To test if I have been hacked: I run an automated task from my home computer that requests my home page every 15 minutes. I use a URL variable that tells my home page to display a footer (which only appears when this particular url variable is present) which shows my name, address, phone, email address and a few other fields taken from my "members" table. I then compare what is displayed to what I know belongs there. (The only part that changes is the banner ad, which I ignore) IF the page isn't available, or if any of the text changes, I send an alert to my cell phone. When I was hacked last year, every table in my database had a javascrpt inserted into it. This will alert me if that happen again. I do this for my 3 most important web sites.
> > We have been attacked by the exact same hack. We discovered it on > > April 6 and it has proven impossible to clean/remove. > >hi, i am relatively new to CF and building web applications. i have >built a few web apps and tried to use as much security as i can. my >questions is how do you guys discover that you have been hacked? >would a hosting company let you know? does the customer let you know >of changes in behaviour? do you have a piece of software looking for >anything suspicious in the logs, etc... > >thanks ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Adobe® ColdFusion® 8 software 8 is the most important and dramatic release to date Get the Free Trial http://ad.doubleclick.net/clk;207172674;29440083;f Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:321555 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4
