So far so good...not hacked

[Red Squirrel]

So far we did not get hacked, and I did not see any other sites get hacked.

Archived topic from Iceteks, old topic ID:1062, old post ID:9231

[Chris Vogel]

I haven't either, Red. That's good!


I am fully expecting to see at least one Web site hacked though. Maybe I won't.

Archived topic from Iceteks, old topic ID:1062, old post ID:9232

[wldkos]

i think I got hacked this morning, atleast someone crashed my MySQL server. All it took was a little restart and everything was fine. hey, red, how about some security help for me?

Archived topic from Iceteks, old topic ID:1062, old post ID:9248

[Red Squirrel]

Security? It would be hard since I don't know much about Linux, as it's different than windows, but a main rule of thumb is to block everything you can from your firewall unless needed. For example, if you want to go super high security, block pings and stuff. Also block known ports that could be used maliciously if you were to startup a daemon that uses it by accident for example.

But the best thing is good logging. Make sure the logs are at a safe place and get rotated often (I would rotate mine every day or so) and basically keep track of any suspicious activity and block IPs as needed. Sometimes people will look for security holes and hack them later. I only hot hacked once and it was a security problem in the actual forum (YaBB) that I used, but because I had a backup it did not take long to recover. The easiest hacks to fix are if someone deletes files as you can reupload it, but what you want to watch out for is people getting right into the system to do other damage than site damage, such as sql. Use powerful passwords like everyone tells you, and change them often... (something I never did on my box though...)

Archived topic from Iceteks, old topic ID:1062, old post ID:9251