Andre- Looking over my logs last week I discovered that it came in via ftp. I have always had anonymous ftp disabled, so it's not that. Three separate attacks from different ip addresses on different days, each one the same code injection of a javascript iframe block within a container of <!--c3284d>. The attacks stopped once I changed the account password and locked down .htaccess.
-- -Mark Wieder mwie...@ahsoftware.net _______________________________________________ use-livecode mailing list use-livecode@lists.runrev.com Please visit this url to subscribe, unsubscribe and manage your subscription preferences: http://lists.runrev.com/mailman/listinfo/use-livecode