Thread: Exploited or hacked?
View Single Post
Old February 16th, 2006, 12:12 PM   #11 (permalink)
David
Owner of the letter DŽ
Resident.
 
David's Avatar
 
Joined in Mar 2004
Lives in fear of Obama.
Hosted on Pass 7
13,209 posts
Gave thanks: 9
Thanked 35 times
Re: Exploited or hacked?
Quote:
Originally Posted by davotoula
I have now carefully gone through all of my directories and files and have made sure that:

no foreign .htaccess files
no 777 directories
no 777 files
checked all my own php/html files for foreign blocks of code
rebuilt all dynamically generated content (from CMS)

Especially 777 directories seem to be dangerous so I recommend you to chmod them to 755 to stay safe.

My Movable Type installation seemed to be creating 777 directories by default so I had to change a config file to force it to create directories with 755 and files with 644.
It should also be known that not all scripts will work with 755 and need 777 to run, in particular those that allow avatar and image uploding.
__________________
"Doing nothing is very hard to do . . . you never know when you're finished." - Leslie Nielsen
David is offline   Reply With Quote