added on Feb 27, 2008 by
I just recently changed servers, and much to my chagrin my LinkEx has been hacked. Fortunately I had an accurate backup
file to restore it completely. But I am wondering is there some kind of new security hole that I am not covering? This
was never an issue in the past.
The files are chmod 755 which seemed to work fine on the previous server.
added on Feb 28, 2008 by
hi,
it's a bit hard to tell with the informations you supply. I could be a new security hole, it could be an old one, it
could be a different script running on your server that wrote to some of the files in the LinkEX directory.
I would very much like to know what you mean by "..LinkEx has been hacked". Was index.php
replaced/edited/corrupted? Was there files in the directory hierarchy that was not suppose to be there? Please explain
it a bit more in details.
Thank you very much for your feedback and notification!
- v0id
added on Feb 28, 2008 by
I am not sure what version of linkex I had (i have the backup files how do i tell) but I know its not very old at all
(last 3-4 months was the last time updated).
Basically what the individual did was change my sites name to "fucker" and added a bunch of spam for diapers,
condoms and viagra in link descriptions. He then set up linkex to display link and descriptions. My pass and username
I am 100% sure were not something that could be guessed/brute forced etc.
added on Feb 28, 2008 by
would you happen to have a copy of the "hacked" folder from your server you could email me?
added on Feb 28, 2008 by
I have a backup copy of it, where should I send it
added on Feb 28, 2008 by
support at linkex dot dk
Thanks a lot!
added on Feb 28, 2008 by
ok, got the email with the archive. I'll look into what went wrong later, when I have a little more time. Thanks again
for sending it to me!
- v0id