RocketTheme - TOPIC: hacked

Welcome Guest! Login

0 items Join Now

- phillip tubby
- Newbie
- Posts: 19
- Thanks: 0
hacked

Posted 16 years 7 months ago
- Hi
  some bugger, scum buckets done this. I dont suppose anyone would know how? this was installed via hyperiion 1.5 rocket launcher .
  
  NB it appears the configeration.php has been modified. should this have been a read only file?
  cheers !
- Last Edit: 16 years 7 months ago by phillip tubby.
#217580
- Yves
- Preeminent Rocketeer
- Posts: 9214
- Thanks: 5
Re: hacked

Posted 16 years 7 months ago
- phillip tubby wrote:
  NB it appears the configeration.php has been modified. should this have been a read only file?
  
  Configuration.php permissions have to be set to 644 after any change.
- Yves
#217622
- Mark A Jackson
- Rocketeer
- Posts: 96
- Thanks: 0
Re: hacked

Posted 16 years 7 months ago
- Try checking your templates index.php file... might not be but seems to be a popular exploit at the moment...
  
  Check here:
  www.rockettheme.com/forum/index.php?t=41268&rb_v=viewtopic
  
  Hope it helps.
#217981
- phillip tubby
- Newbie
- Posts: 19
- Thanks: 0
Re: hacked

Posted 16 years 7 months ago
- thanks for the replies,
  
  and help
  
  Is there somewhere that shows all of the correct permissions for the vital files? so i can avoid this in the future
  
  thanks !
#221388
- GollumX
- Elite Rocketeer
- Posts: 2817
- Thanks: 0
Re: hacked

Posted 16 years 7 months ago
- In global configuration you can set all files to be 644, which is what you should set them all to.
  
  Look in the JED, there are some security extensions there with weird names
  Look halfway down this list: extensions.joomla.org/component/option,c.../cat_id,0/Itemid,35/
  
  Please edit your first post in this thread to delete the screenshot. Let's not give the bastards the notoriety they crave.
- Say no to Internet Explorer 6.
  twitter.com/mark_up
#221393
- Yves
- Preeminent Rocketeer
- Posts: 9214
- Thanks: 5
Re: hacked

Posted 16 years 7 months ago
- phillip tubby wrote:
  Is there somewhere that shows all of the correct permissions for the vital files? so i can avoid this in the future
  
  See forum.joomla.org/viewtopic.php?t=121470 and docs.joomla.org/Joomla_Administrators_Security_Checklist
  
  The standard, default permissions that get assigned to files and directories by the server are normally;
  
  Files = 644 and Directories = 755
  
  These permissions would allow, for files;
  
  644 = rw- r-- r-- = Owner has Read and Write
  Group has Read only
  Other has Read only
  
  and for directories;
  
  755 = rwx r-x r-x = Owner has Read, Write and Execute
  Group has Read and Execute only
  Other has Read and Execute only
- Yves
#221394
- phillip tubby
- Newbie
- Posts: 19
- Thanks: 0
Re: hacked

Posted 16 years 7 months ago
- thanks guys.
  
  (image also removed)
  
  ;D
#221422

Time to create page: 0.087 seconds

hacked

hacked

Re: hacked

Re: hacked

Re: hacked

Re: hacked

Re: hacked

Re: hacked