|
| Headline | NEED HELP - sites future unclear |
|
Page:
[1] |
| Author | Comment |
Bodo
May-05-2010, 10:05 GMT
Austria
 | Hello
Yesterday the site got hacked, acutally it might be hacked since a few weeks or months.
I do not know that much about server security and script security and all those things.
The hacker did not knew the site passwords (but now he knows them)
He either came in via a wordpress blog I have installed, or - what might be the main door, a picture or file upload security hole.
I do not know how to make it more secure.
If you know someone who is a real computer specialist (your, or someone in your family), and who could help me for some hours. Then please contact me.
It must be someone who really knows a lot about server security, php scripts and so on. I have a friend who set up my server, but he also does not know more, and does not know how the hacker came in.
We deleted all virus files I could find, and I changed the passwords now. But I do not believe that this helps a lot.
Usually these hackers do not destroy the page btw. That was very silly what he did yesterday (forwarding the page). Usually they missuse my server for hacking important pages or making illegal activities look like as paul-simon.info does these illegal things.
Bodo
|
| | |
barb
May-05-2010, 13:41 GMT
USA - United Staates America
 | Security is a real challenge-I have a website through networksolutions which I guess is called the hosting company. Back in January I noticed my site was all arabic handwriting and palestinian army pictures. Network was not too helpful, told me to restore the website back to a few days before the "defacement" as they called it. I ended up with a personal computer virus which they claim was unrelated. Later learned a number of member sites had been affected and also that network had been hacked into many months earlier in 2009-and financial data stolen. So if these big companies can not protect themselves....a friend told me one has to have both upper case and lower case letters and symbols in the password as the hackers just have computers run continuous password searches and using upper and lower makes it a longer search and perhaps the hackers move on before the password is found. |
| | |
Bodo
May-05-2010, 16:14 GMT
Austria
| Thanks Barb
Well, I really do not know how to improve security at the moment. MAin problem is not the password, it is the picture upload. These things are so unsafe - I check everything (see if it is a jpg, check the dimension of the picture), but they are able to upload their own code to the pictures gallery, and after that they hack the full server.
I can not host with a shared hosting company (for example networksolution) anylonger, because the page has become too big (too many visitors). They just cancelled my account. I had to move on to my own server, where you have to install everything for yourself. And now, I can not hire a network security expert for running some small web pages.
You are right, not even the big companies are safe...so what could I do. |
| | |
Forum guest
May-05-2010, 17:36 GMT
United Kingdom
 | Nick from Widnes England writes:
The problem of yesterday ie the german advert for o phones has vanished. Thanks Bodo!!!
Unfortunatly I am very sad that idiots and sick minded people hacked into the excellent web pages provided by Heir Bodo.
It is unfair that this web page maight be shut down as a result of security breaches.
This sight does not include any form of to my opion anything that should be hacked into ie bank account and finance details. Its just a site for the fans of bodo´s world of Paul Simon.
Lets hope new security can be installed to protect the site and keep it free to access for all fans of Paul Simon Old and new.
|
| | |
Cher
May-05-2010, 19:55 GMT
USA - United Staates America
| And my message got taken down as
well. |
| | |
Mike
May-05-2010, 20:24 GMT
USA - United Staates America
| I´m not too knowledgeable with website security, but I remember a friend told me that using the "&" symbol makes a password impossible to hack. Barb mentioning the lowercase-uppercase idea reminded me of it. |
| | |
Forum guest
May-05-2010, 21:29 GMT
USA - United Staates America
| Bodo,
Sorry you are going through all these problems. Yours is a thankless job as it is, but many (myself included) appreciate all your hard work and time. For someone to just mess this up for their own amusement is ridiculous. I can´t help with security, just wanted you to know your efforts for keeping this site alive are very appreciated. |
| | |
Scaaty
May-05-2010, 23:56 GMT
Ireland
 | Bodo, I passed on your message to my brother who works as a computer advisor to computer advisors, security is not his thing but he is trying to suss out some info amongst his colleagues |
| | |
Helen
May-05-2010, 23:57 GMT
Australia
 | I´m not an expert on computer server security, just someone who gets nervous when I hear about hacking.
I also appreciate this website Bodo, it is very helpful to search the forums for information, and concert lists, and great to be a part of the community of like minded people. Hopefully the security problems can be sorted out. |
| | |
Forum guest
May-06-2010, 00:13 GMT
Brazil
 | Jupira,from Brazil
Sorry, Bodo I wish I could help you some way.Those were really bad news
All I can do is wish you good luck against the mediocrity spread all over the world... |
| | |
Scaaty
May-06-2010, 11:03 GMT
Ireland
| hi bodo, I got this reply - hope its of some help.
Easier way to do this is to ensure wordpress is up to date, it is very weak security wise, the best option then is to go for either server side security with password protected folders.. If its a genuine hack. Notify the ISP and have them blokc the source they will also offer advice re security
Keep up the good work thanks for everything |
| | |
Bodo
May-06-2010, 12:03 GMT
Austria
| Thank you Scaaty.
Think the next thing I will do is to delete these useless wordpress thing.
I just hope that one day a hacker will not have the idea to erase the whole page, thats what I am really afraid of. I do not have a daily backup (it is not offered with my server hosting company, have to made it by hand...and so often I forget about it)
|
| | |
Nikki
May-09-2010, 11:49 GMT
Australia
| Hi Bodo, what if you moved to another server hosting company - that way at least you can have daily backups and maybe better security too? I don´t know much about any of this, just a thought.
And thanks again for the amazing effort you put into this site each day! |
| | |
Lara
May-10-2010, 09:39 GMT
Italy
 | Hi Bodo, hi everybody.
Just to say that I´m very grateful for your daily efforts and work for this precious website. No words about human stupidity. Unfortunately I don´t have any knowledge about this kind of problem that can make me more usefull. |
| | |
|
Page:
[1]
|