Troubles with blank page after Hack Recovery
-
-
- Carolyn Whiting
- Rocketeer
- Posts: 85
- Thanks: 0
-
www.westminstersd.org
was hacked. I take complete responsibility for my slowness updating security. I followed joomla.org's security checklist (at least what I could), updated with 1.5.6. Website worked yesterday after my fiddling. Today, front end is completely blank. Back end is good. I know I'm missing something completely obvious here. What is it?
Upgraded to 1.5.6
htaccess.txt > .htaccess
Cleaned up configuation.php
changed passwords for DB and super admin
I still need to restore from a backup - Last Edit: 16 years 7 months ago by Carolyn Whiting.
-
-
-
- Macey
- Sr. Rocketeer
- Posts: 145
- Thanks: 0
-
hi Carolyn
My sympathies - from my own experience i know there is nothing worse. Here's a few things i did (a year a go when my site was destroyed by script kiddies... a painful lesson)
1) If you you have a lot of visitors to your site then set up a new site on blogger.com and redirect your domain to the new site while you fix everything (prob best to avoid saying you have been hacked... just say undergoing maintenance)
2) Check you logs to determine "point of entry" - perhaps you had an outdated version of a component. It will be quite clear from the logs
3) Check all your components/extensions/plugins on the VULNERABLE EXTENSIONS LIST . Make sure you have updated all your versions.
Note: If your site was destroyed by "Script Kiddies" (most likely unless you have some big time enemies) then your site will have been registered on a "Successfully Hacked" list... as soon you go live again you will likely be hit big time. In my case we had 30 hacking attempts within the first 1hr of going live again. So v important to make sure everything is sorted before you go live.
4) Change all passwords - especially your Admin password. Best to change your admin user name as well.
5) Make sure your backups aren't corrupted. Have a look on Joomla.org for a script called filist.php. You install this in your root directory and it produces a complete list of files sorted by "last modified" time stamp. If there is anything that looks suspicious (that shouldn't have been modified) then reinstall that file form the original. Important to delete or rename this file once it has been used.
That's all i can think of for the moment. I'm sure lots of others will be able offer more advice. Take your time and get it right. If you rush it chances are you'll be hacked again.
Keep us updated
Cheers
Iain
-
-
-
- Rudolf Ernenputsch
- Sr. Rocketeer
- Posts: 109
- Thanks: 0
-
deactivate the admin login completely, chose your own admin username and use passwords that are not guessable(numbers, special characters, and so on)
...aside from all the technicalities of directory and file permissions, people often forget these easy steps.
-
-
-
- Carolyn Whiting
- Rocketeer
- Posts: 85
- Thanks: 0
-
I've done all the suggestions. Thank you!
The front end of my site is totally blank. I have all my data, and can work with it in the administrator side, but nothing shows on the front end. Ack! What now?
-
-
-
- Macey
- Sr. Rocketeer
- Posts: 145
- Thanks: 0
-
your content is stored in the database.
change your template (temporally) - if your site works then reinstall your template butif you have restored you backups then it would suggest your backups may be corrupt.
if that fails then it would appear your index.php needs replaced - however if that is damaged then would be prudent to do a complete reinstall of joomla.
-
Time to create page: 0.059 seconds