Well, Ive been hacked 5 times already the other 4 times they just replaced index.html now its serious! They deleted 99% of the things on my website. OMFG, I am so mad, how do i prevent this, I am trying to keep calm , but my website was a huge site! and its gone! I do have backup of the SITE (site only) but half the dang personal pictures/sigs/media is GONE! Oh my god. How do I prevent this!?

Hi bjx

Quit using scripts that are vulnerable to hackers.

Which CMS are you using?

Originally posted by bjx
How do I prevent this!?
You must be using one of the Nuke products. The best way to prevent this is don't use open source products that everyone is always trying to hack into. Build your own website.

Originally posted by alphadesk
Quit using scripts that are vulnerable to hackers.
You beat me to the same answer :)

Well, this is going to be a suprise but, I dont didint use ANY nuke products -- I built my site RAW HTML and saying

Build your own website.

kind of disrespects me :[ becauase I work so hard on it and poof. I am not using ANY nuke-type products or open source products.

I apoligize then .... but something is doing it.

Pure html and no scripts at all?

Are you the only user?

Sorry . . . but that is usually the cause.

The obvious then . . . change your ftp password. Make sure there are no other ftp users in OPS. Look through your space and make sure no one has deposited a script there when they had access.

Make sure your permissions do not allow group or world writes. Do not ever set anything to 777 or 666. Then anyone on the server could delete your files. Not necessarily intentionally either, they could have a misconfiguered script...

You can also just disable your ftp access once you upload your site. You can do this in OPS. Your user will still be on the system, but no one will be able to FTP to your site unless you reactivate it in OPS.

Originally posted by bjx
Well, this is going to be a suprise but, I dont didint use ANY nuke products -- I built my site RAW HTML and saying



kind of disrespects me :[ becauase I work so hard on it and poof. I am not using ANY nuke-type products or open source products.

Hmm.. I just looked at your site (www.echo-designs.com) via google cache and it looks like every single extention was .php. And you also had a shoutbox. I am guessing they got through a hack in your shoutbox.

I never liked the idea of a shoutbox, but if youre going to use on, use on thats hosted on a seperate server (one of the free ones all over the internet) or make your own (their fairly easy to make).

As for getting your site back, did you record your logs or anything to hand it over to the "internet FBI"?

I've seen sites go down in flames because of an actual shout box. Very secure site, but once they add one it's a matter of hours. I just say stay away or make those shoutboxes that are built in to a forum.