>>>>> "GarethNZ" == GarethNZ <[email protected]> writes:
GarethNZ> Hopefully someone here is very conversant with the Plesk
GarethNZ> control panel. I was running 8.3 on my server. Some
GarethNZ> a**hole using the Black Hole Stealth Kit hacked my
GarethNZ> server getting in through the large holes left by
GarethNZ> plesk. I have now updated to Plesk 9.5.4 plus the
GarethNZ> "security" update. Am I now safe from this exploit?
Nope. The only safe way after a hack is getting a new server and
reinstalling everything from scratch, reinstalling every source of
your website from trusted sources, and carefully reviewing any custom
code you have written.
Usually hackers leave a backdoor, so come back in no time, that's why
the reinstall.
On the other hand, you're not an important target, so cleanup might
work, but if you are taking money from customers or storing customer
email addresses, do you want to take the risk? Do you want to shop at
a site that takes such risks?
--
All the best,
Berend de Boer
------------------------------------------------------
Awesome Drupal hosting: https://www.xplainhosting.com/
--
NZ PHP Users Group: http://groups.google.com/group/nzphpug
To post, send email to [email protected]
To unsubscribe, send email to
[email protected]
