>>
Site Map
>>
Forums
>>
Security Issues
Forum module - topics in forum:
Security Issues - Get help in securing your PHP-NUKE Installation.
Site got hit
Well My site finally got tampered with.. The results were minimal guess they were not in a bad mood that day.. I know the attacker could have done worse.. Ok I think its time to recheck a few security issues and need Nuke Code staffs help..
I read the security story that nuke code wrote but I have one big questioj that was not touched on.. Can you change the prefix nuke_ after you have installed the sql?
also I am upto date on sentinel 2.4.2pl4 but what about chatserv I think im at 3.1 I know 3.2 is available but wasn't sure if I could use it for Nco Nuke 7.6
I have read and reread every topic i can find about .htacess and httpauth. I have checked my .htaccess and it is recording ips however I cannot see a list of anything on the staccess page. Is there something supposed to be there. All my staff have no problems getting through the sentinel prompt so I would assume that its working. And we all know about assumptions.. I ran the info .php thing and it says im on a apache server but it also says cgi interface. So I am now unsure wether I have thingz configured correctly..
Other additions to Sentinel.. I have heard that you use two protections but which ones? Nuke touched on Fortress so i will check on that. I have the ddos block installed and I have flood gate but unsure what that is really supposed to do.. I was wondering if possible someone from this staff may be interested in testing my site and giving their opinion.. I am here because I am new and trust what i read.. At this stage in my learning that is all i can do is trust that im following directions right..
Sorry to hear your site got tampered with. Unfortunately it happens, even with the very best security.
The very first thing I would do if it were my site, is change all passwords, Cpanel, FTP, Admin, ETC. After doing that login to your site and within sentinel administration do a "Scan for new admins" So Sentinel can pick up on ALL the new admin passwords
Then once that is done I would definately upgrade Sentinel to the newest version. Also make sure all your blockers within Sentinel are set to Block, EMail and Forward. Of course make sure you put a site to forward to in the Line where it says "forward to" I Usually set this to
http://yahoo.com
The DDoS block is basically worthless. Nothing at the site level can prevent or stop a DoS attack. Besides Sentinel already has DoS protection built in. Same goes for floodgate. It doesn't do anything Sentinel doesn't already do and doesn't do what it does nearly as effectively as Sentinel. I know the article you speak of it was written long before Sentinel had these features built in.
If your admins are getting the http login when they hit the admin page of your site then you can be certain that htaccess is turned on and working. staccess is another way of using this same login and won't be working if you have htaccess on.
Lastly do not use the 3.2 patch from chatserv on ultra you will break your site. NukeCode is working on a 3.2 patch for ultra it should be out soon.
As far as someone from this site checking your site for security holes there isn't much we can do other then what I told you. However I can recommend you try and contact s1nful from [url=http://darkyahoo.com]DarkYahoo!/url] She might be able to help see if there are any holes in your site without blowing it up. You should try and send her a Private Message on her site. Worst she can say is no.
Thank You for your guidance and i will make sure to use all of your suggestions. I will remove the two addons if they offer nothing further to my security.. As for the protections in sentinel I have the latest version and the flood blocker is disabled due to banning everyone including me.. Has that been addressed yet?? Thanks again
It's supposed to have been fixed with the latest version.
