Web Wiz - Green Windows Web Hosting - Celebrating 25 Years!
Web Wiz Homepage Search Web Wiz

  New Posts New Posts RSS Feed - Turkish Hacker (again) - help needed
  FAQ FAQ  Forum Search   Events   Register Register  Login Login

Turkish Hacker (again) - help needed
 Post Reply Post Reply
Author
  Topic Search Topic Search  Topic Options Topic Options
bravura View Drop Down
Newbie
Newbie


Joined: 31 October 2005
Status: Offline
Points: 3 		Post Options Post Options   Thanks (0) Thanks(0)   Quote bravura Quote  Post ReplyReply Direct Link To This Post Topic: Turkish Hacker (again) - help needed
    Posted: 31 October 2005 at 6:12am
My site got hacked again over the weekend. All my folders were full of the hackers default files. I removed them and got my site running again - except for the forum.
I removed the entire 'forum' folder from my server including the database. Hoping to start all over again with a new slate I downloaded the new version of Web Wiz forum and uploaded the folder (complete with new database) to my server. Imagine my horror when I discover that the default.asp page still shows the turkish flag. Imagine my horror too, that, as the administrator I can't log in. When I go to the log in page, there is notification that it has been hacked by S@M3T.
I'm at a complete loss as what to do next?
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 31 October 2005 at 8:19am
It sounds like your forum was hacked through a security hole you left in your server, not in the forum software.

If the hacker is replacing files in your forum then you have left write permissions enabled on your site. With write permissions enabled on your site a hacker can manuplate the browsers HTTP response to upload files to your server, therefore hacking your site.

You need to contact your web host and get them to disable write permissions throughout your site, except on the database folder which sold be moved to outside of your web site, as per the install instructions on how to secure your access database.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
bravura View Drop Down
Newbie
Newbie


Joined: 31 October 2005
Status: Offline
Points: 3 		Post Options Post Options   Thanks (0) Thanks(0)   Quote bravura Quote  Post ReplyReply Direct Link To This Post Posted: 31 October 2005 at 10:15am
Sadly, Fasthosts claim not to be able to change the file permissions on their Windows shared hosting 'environment'. So I guess we're pretty much stuffed!
With the forum's default.asp still stopping me from changing the content as an administrator, it looks as though our site is going to have to go without what was a very popular venu
Thanks for your help though boRg and a great product whilst it lasted. ps why not just bite the bullet and charge for it?
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 31 October 2005 at 10:50am
I use to use Fasthost myself and so my opinion of them is that 'they suck' (not to mention all those horrible hidden charges!!)

Anyway, what about looking for a new web host, if it's a UK one that you are after then you can purchase web hosting from Web Wiz Guide, and I can then personally change the permissions to make your forum more secure, as well as installing it on your account for you.

Check out the various hosting plans at www.webwiz.net, or click on the 'web hosting' link in the left hand menu.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
bravura View Drop Down
Newbie
Newbie


Joined: 31 October 2005
Status: Offline
Points: 3 		Post Options Post Options   Thanks (0) Thanks(0)   Quote bravura Quote  Post ReplyReply Direct Link To This Post Posted: 31 October 2005 at 11:06am
Yep, its a UK host that I need. Our site is www.greenspec.co.uk. Its getting quite big and we have what I guess is a 'medium' amount of movement on it with around 1500 visits a day. Also it provides an excellent site statistics facility which we need to report site activity to third parties (the government being one of them at the moment). Is the change over easy? How much would it cost? Thanks again for your very quick response boRg!
Back to Top
JJLatWebWiz View Drop Down
Groupie
Groupie
Avatar

Joined: 02 March 2005
Location: United States
Status: Offline
Points: 136 		Post Options Post Options   Thanks (0) Thanks(0)   Quote JJLatWebWiz Quote  Post ReplyReply Direct Link To This Post Posted: 01 November 2005 at 2:26pm
Originally posted by bravura bravura wrote:

Sadly, Fasthosts claim not to be able to change the file permissions on their Windows shared hosting 'environment'.


That is one of the most irresponsible claims I've heard from a host. They should be tossed off the highest cliff you can find. You need to RUN from that host. If any other site on the same machine as yours belongs to a hacker (intentionally or not), then your site also belongs to the hacker.

p.s. I'm not affiliated with Web Wiz Guide in any way. I'm just an average Web Wiz user repaying my debt for the use of their fine forum by trying to help other Web Wiz Guide users.
Back to Top
WebWiz-Bruce View Drop Down
Admin Group
Admin Group
Avatar
Web Wiz Developer

Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844 		Post Options Post Options   Thanks (0) Thanks(0)   Quote WebWiz-Bruce Quote  Post ReplyReply Direct Link To This Post Posted: 02 November 2005 at 4:26am
Originally posted by bravura bravura wrote:

Yep, its a UK host that I need. Our site is www.greenspec.co.uk. Its getting quite big and we have what I guess is a 'medium' amount of movement on it with around 1500 visits a day. Also it provides an excellent site statistics facility which we need to report site activity to third parties (the government being one of them at the moment). Is the change over easy? How much would it cost? Thanks again for your very quick response boRg!


The cost depends on the amount of bandwidth and features you require, but if you look at http://www.webwiz.net/web_hosting.asp it lists all the features  available for each of the 3 hosting plans.

There is a stats program available from your control panel and also you can download RAW log files to run through your own analysis program.

The change over should be relatively simple, just upload your site, setup your email accounts, then change the DNS server details for your domain to point at the Web Wiz Host servers.
Web Wiz Forums Hosting
ASP.NET Web Hosting
Back to Top
 Post Reply Post Reply

Forum Jump Forum Permissions View Drop Down

Forum Software by Web Wiz Forums® version 12.08
Copyright ©2001-2026 Web Wiz Ltd.

Become a Fan on Facebook Follow us on X Connect with us on LinkedIn Web Wiz Blogs
About Web Wiz | Contact Web Wiz | Terms & Conditions | Cookies | Privacy Notice

Web Wiz is the trading name of Web Wiz Ltd. Company registration No. 05977755. Registered in England and Wales.
Registered office: Web Wiz Ltd, Unit 18, The Glenmore Centre, Fancy Road, Poole, Dorset, BH12 4FB, UK.

Prices exclude VAT at 20% unless otherwise stated. VAT No. GB988999105 - $, € prices shown as a guideline only.

Copyright ©2001-2026 Web Wiz Ltd. All rights reserved.