Phpbbplus is off (probably hacked)

www.phpbbplus.it

This morning another XS site was hacked....... we have to be worry?  

____________
My Icy forum: www.lineameteo.it
Staff Member @ IcyPhoenix.com & IcyPhoenix.it

Why probably?

____________
Megabass

phpBBplus.it was changing some flags and i made a mistake restarting Apache and The old directory was visible.
(A typo ... )

I had some intrusion via FTP (no file of phpBBXS was involved) and I changed the owner and  some other flags on the virtual server so the name of user is not the same.

I think that, when two mount my site was defaced for a problem with another site on the same vs [was a nuke] someone used a script and the fact that i forget to set back "register_global" at off and "safe_mode" at on.

When the site was defaced the hacker got's the ftp user and the related password to the site and used my site for ... his businnes. I changed the password and yesterday the hacker found it again so I decide to chanche user name of phpBB (leaving old user pointing to nothing - no home ).

If the hackers violate again the site I've look for some other problems on the system of the vs...

____________
[img]http://www.mediomondo.it/appoggio/yuqlogo.jpg[/img]

andrea75 wrote: [View Post]

This morning another XS site was hacked....... we have to be worry?  

My site wasn't hacked. So I guess it might be a security hole in the server software, not in XS.

____________
No support via PM or E-Mail!
FAP 3, yeah baby, yeah!