J1.0.13 site getting attacked at will - Joomla! Forum - community, help and support

-

hi friends,
my website(joomla 1.0.13)  getting attacked @ , brought down , bought guy , has added me im inform me , make life hell.i thought shared hosting godaddy since happening since last couple of days , bought vps hosting , installed new j1.0.13 new database imported users old database , he's attacking new installation again @ , letting me know.he says he's attacking servers , when attacks site become inaccessible , think if restart webserver site starts appearing again.

when did today,i reported webhosting guys attack time , came reply:

code: select all

we verified logs , found there repeated attempts access server.
----------
oct 5 03:40:48 blog sshd(pam_unix)[9854]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xxx.xxx.xxx.xxx user=root
oct 5 03:40:52 blog sshd(pam_unix)[9903]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xxx.xxx.xxx.xxx user=root
oct 5 03:40:55 blog sshd(pam_unix)[9965]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xxx.xxx.xxx.xxx user=root
oct 5 03:40:59 blog sshd(pam_unix)[10016]: authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=xxx.xxx.xxx.xxx user=root
-------------

please note furhter support subscription chargeable.

we suggest conduct security audit in server. kindly authorize charge of 99.5 euro conduct same our end.

i noticed these entries in access log think has attack:

code: select all

[color=red][edit] russw : ip address removed[/color] - - [03/oct/2007:02:39:17 +0300] "get /index.php?[color=red][edit] russw : exploit text removed[/color]
.....
.....
[color=red][edit] russw : ip address removed[/color] - - [04/oct/2007:06:56:47 +0300] "get /index.php?[color=red][edit] russw : exploit text removed[/color] http/1.1" 200 167 "-" "libwww-perl/5.805"
.....
.....




i not want mention site name in public it's vulnerable rite now.i can send in in pm.guys,please me , there can do??? if pay webhosting guys,do think resolve issues??

one hint guy giving was saying add "$log#" database....i dont know that.

please help.
thanks

[edit] russw : removed references sites , ip addresses

check have joomla! rg_emulation off in site control panel , php register_globals off, check extension revisions against vulnerable extensions list, check not have directories or files mode of 777.

please review following faq's asap, find wealth of information related issues.

  security & performance faq

it not recommended leave sites publicly available , exploited, serve promote offenders ego , kudos , potentially expose rest of server attack.

the above mentioned faq provide more enough information assist in further securing sites.

particular entries of note , pay attention to, are;

  joomla! administrator's security checklist

  help! site's been compromised. what?

  vulnerable extension list

  joomla! tools suite
  how can check joomla! installation's overall security , health?

  what joomla! have file permissions?





Comments

Post a Comment

Popular posts from this blog

DHT11 Time out error using v0.4.1library

-
Image
i'm struggling dht11 sensor work on arduino. code compiles without problems in serial monitor output keep on getting " read sensor: time out error" i've tried multiple libraries, adafruit etc still none of them worked. set serial monitor same speed (115200) didn't fix problem.  i'm using:  mega2560  dht11 temp+hum sensor windows10 x64 arduino 1.6.9 library dht11.h v0.4.1 source:  http://playground.arduino.cc/main/dht11lib wiring : blue = gnd yellow = 2 red = 5v (also see picture)  my code:    code: [select] #include <dht11.h> // //   file:  dht11_test1.pde // purpose: dht11 library test sketch arduino // //celsius fahrenheit conversion double fahrenheit(double celsius) {   return 1.8 * celsius + 32; } // fast integer version rounding //int celcius2fahrenheit(int celcius) //{ //  return (celsius * 18 + 5)/10 + 32; //} //celsius kelvin conversion double kelvin(double celsius) {   return ...
Read more

Sketch upload fails with Java error (___REMOVE___/bin/avrdude)!

-
hi, i'm getting same error despite have tried 2 boards , done arduino reinstall in windows 7 machine! while trying update "bareminimum" in verbose mode: code: [select] arduino: 1.8.0 (windows 7), board: "arduino/genuino uno" sketch uses 450 bytes (1%) of program storage space. maximum 32256 bytes. global variables use 9 bytes (0%) of dynamic memory, leaving 2039 bytes local variables. maximum 2048 bytes. ___remove___/bin/avrdude -c___remove___/etc/avrdude.conf -v -patmega328p -carduino -pcom8 -b115200 -d -uflash:w:c:\users\rui\appdata\local\temp\arduino_build_445303/bareminimum.ino.hex:i java.io.ioexception: cannot run program "___remove___/bin/avrdude": createprocess error=2, system cannot find file specified  at java.lang.processbuilder.start(processbuilder.java:1048)  at processing.app.helpers.processutils.exec(processutils.java:26)  at cc.arduino.packages.uploader.executeuploadcommand(uploader.java:129)  at cc.arduino.p...
Read more

Arduino Uno + KTY81/210 temperature sensor

-
Image
hi, sorry, new , unsure lot of things, need clarification. haven't found information explains how , why things work, "do this, that" i following guide ( arduino-thermistor-temperature-sensor-tutorial ) connect thermistor arduino uno. here temperature sensor information: temp. sensor 2000r +-1% to92 part.no.:   kty81-210 name:   temp. sensor 2000r +-1% to92 description:   2.5mm, 1980...2020ohm, -55...+150°c and here sensor's data-sheet: sensor data-sheet i have connected same way in guide. works , values being serial printed. what don't understand: 1. thermistor's , resistor's ohm value should equal, correct? in case 2000 ohm? 2. thermistor has ptc, i'm guessing have invert math or use ntc thermistor instead correct values? (currently resistance goes temperature goes down) 3. understand code uses steinhart-hart math logic convert resistor value temperature value, need a, b , c coefficients of thermis...
Read more