RocketTheme - TOPIC: How to not get hacked

Welcome Guest! Login

0 items Join Now

- lafrance
- Hero Rocketeer
- Posts: 324
- Thanks: 0
How to not get hacked

Posted 14 years 11 months ago
- Hello!
  
  Here are steps to follow not to be hacked.
  
  1.Never use IE web browser for your joomla administration if you intend to visit websites outside your domain.
  
  Why ?
  
  Simple there are tons of script out there that will grab your admin information.
  
  2.Never use any directory set at 777 or files at 666
  those setting say please hack me.
  
  If you have problem installing and you need to set it, Here what you should do:
  
  Contact your web host ask that they change the permission of your folder to that of your account
  
  an example
  
  Paul as an account is login is paul_rs1 password qwerte
  
  the folder permission should be own by paul_rs:psacln (if you are on plesk)
  
  this will keep folder at 755 however with no problem with installation
  
  If you own your own server and are the only one on it apache:apache could be use.
  for server SUphp or fastCGI is the best practice as it will set all permission right.
  
  Now as you can see Paul did not get a real secure password
  
  So we need to secure this with a much better one like !Sm0$nus&x7M (example)
  
  3. Now that we have secure our web site are we safe?
  
  No we still need to do more hardening of some files
  On my site .htaccess is set at 444 same for my index.php
  
  Why give more ways for a hacker to hack my site
  
  4.Now database
  
  Many still use jos_ as there extension. Also many hackers will use jos_ to hack a web site
  
  Smart hackers would use another way.So please think of a original name for your database
  like Paul could use pajw_ this help securing it a bit more.
  
  4.extensions the core of our eye candy look on our web site.We all love them however like a child we do not pay much attention to them if they work. Please hack me
  
  That is why you should check joomla docs VEL list to see if your extension is in the list has a security vulnerability. By leaving a vulnerable extension on your site, leaves it wide open to hackers to mess with your website and hosting configuration. So please visit this site every day.
  docs.joomla.org/Vulnerable_Extensions_List
  Or easier way is to add rss feed to your admin panel.
  
  5 Joomla core there reason why joomla update it version it not to get attention it to resolved security risk,
  Well I have joomla 1.5.10 and I did lot of mod to it cannot just upgrade Please hack me
  
  Maintain the most recent release of joomla and it be hard for them to hack you.
  
  6 Backup your site every day morning night that way if any thing happen it easy to get your site back up.
  
  7 Some hackers are like joomla users lazy so they will do a hunt on google to see who running what version of joomla check for exploits and hacked there site.
  
  Here a tip that can fool a hacker and google also other search bot use this line in your templates/index.php <?php $this->setGenerator('Joomla 1.6 - Open Source Content Management'); ?>
  
  ad this in your head section
  it will not fool every one however will help you
  
  8.Do not use the same password for ftp and admin login
  
  9 if you own a server
  
  do not use port 21 for ftp use like 6876
  do not use port 22 or 20 for ssh use a higher port like ftp
  
  Well this is it for now
  
  Pierre
- Please be kind no PM without asking,Pm without asking will result in fow list
  help also on freenode irc #joomla,hosting solution for a great value 20 users only per server.
  Pierre.
#501106
- JEM
- Preeminent Rocketeer
- Posts: 17917
- Thanks: 4
Re: How to not get hacked

Posted 14 years 11 months ago
- Thanks!
  
  Linked it here:
  
  www.rockettheme.com/forum/index.php?f=15..._v=viewtopic#p501147
- Thanks,
  jim
#501148
- Tyndie
- Preeminent Rocketeer
- Posts: 8803
- Thanks: 3
Re: How to not get hacked

Posted 14 years 11 months ago
- This is a useful tutorial for plesk users, if they are having file permission issues:
  
  How to get J1.5 working on Plesk
  
  I noticed this seems to be quite a common problem, and there is a lot of documentation on it which can be confusing as it says a lot about using mod_suphp which isn't really needed.
  
  If you have a vps. or dedicated server then you can do these steps in bash as root, otherwise get your webhost to do them for you:
  
  1. Make sure all folders are set to 755 which are required to be writeable by Joomla.
  2. In shell or in cuteftp(or similar) logged in under ssh connection:
  
  edit file: "/etc/proftpd.conf"
  
  Search for umask:
  
  change setting to "002"
  
  3. Change directory to the vhost folder for the domain that joomla is at:
  cd /var/www/vhosts/example.com
  
  4.
  execute these commands(modify username to your ftp username):
  chown -R username:psacln httpdocs chmod -R g+w httpdocs find httpdocs -type d -exec chmod g+s {} \;
  
  5. Edit file: "etc/group"
  
  Search for "psacln:x:2524:"
  
  Change to "psacln:x:2524:apache,psaftp,psaadm"
  
  6.
  
  Execute command
  
  httpd -t
  
  Hopefully this should come back saying syntax ok, if not recheck the steps already done.
  
  7.
  
  Execute command:
  
  /etc/init.d/httpd reload
  
  8. Go into joomla administration, under help, and then system information, and directory permissions and they should all be writeable.
#501409
- MoriahCorp
- Newbie
- Posts: 16
- Thanks: 0
Re: How to not get hacked

Posted 14 years 6 months ago
- Thanks for the walk through.
  
  3. What is a "bad" setting for the index.php and htaccess.txt files. It says above you selected 444. Mine are set at 644. Is there a default setting we should not use?
  
  4. I assume you're referring to the mysql database, correct? If so, a database name beginning with anything other than "jos_" is fine, correct?
  
  Thanks again, much appreciated.
  
  Thanks
#560430
- prim
- Preeminent Rocketeer
- Posts: 17290
- Thanks: 217
Re: How to not get hacked

Posted 14 years 6 months ago
- 3. 644 is usually ok.
  4. Yes.
- Please reply with a direct link to the issue & create a new thread for each new issue.
  
  A template is only as good as the content that goes into it - DanG
#560475
- Evan Westerlund
- Rocketeer
- Posts: 62
- Thanks: 0
Re: How to not get hacked

Posted 14 years 6 months ago
- Hey Gang!
  
  Great info above...takes a bit to absorb it all and put it to action but worthy of it.
  
  I have posted at joomla.org a general, yet specific question around security. I'll post here as well. My experiences here in terms of getting clear answers has been fantastic.
  
  I am a user of the Iridium template. Rocket Launched it, and have been working like a dog to build a site that is user friendly, interactive, ect. I have a Captcha component installed, but they are always a bit difficult to configure I am finding...
  
  There are two things that have me wondering if my site has been compromised...
  
  1) I receive strange user registration names & emails. No one I might no, and absolutely not an actual person name or email. I have since re-set the Captcha and have not seen any of these in the past day or two since.
  2) At the top of the template I seem some vertical dotted lines that I have not seen before on this template...I have attached a screenshot to view).
  
  I have a couple of questions also about - what specific files should I be looking for to ensure permissions are correct/secure? And are there any site testers to see if my site is, in anyway vulnerable?
  
  My Joomla is up-to-date and I back-up often, keep tabs on vulnerable extensions etc.
  
  Best regards, and thanks in advance!
  //Evan
#562216
- YeeP
- Hero Rocketeer
- Posts: 287
- Thanks: 0
Re: How to not get hacked

Posted 14 years 6 months ago
- Which files would I need to make changes in, if I wanted to change the database tables name extension?
  
  (Note: I can handle the rename in the database itself, just don't know the files that would need to be changed)
  
  I installed it years ago, gimme a little slack here!
#562824