What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » Skype & Technology » Tech Talk » Website being hacked

Website being hacked
Author: Message:
SikStyles
Senior Member
****

Avatar
DeathCult

Posts: 894
Reputation: 29
35 / Male / Flag
Joined: Jan 2005
O.P. Website being hacked
Ok my friends site is being hacked and then redirected to another site, which is annoying and he had to take the site down.

so im askin is there any way to block this thing or something that wont allow hackers to do something with it?

the website is www.access-anime.com

thanks in advance :)
You're still breathing? Why?
Get off the cross, the wood is needed.
[Image: userbar.jpg]

09-03-2005 02:54 PM
Profile E-Mail PM Find Quote Report
segosa
Community's Choice
*****


Posts: 1407
Reputation: 92
Joined: Feb 2003
RE: Website being hacked
Tell him to learn how to keep up to date on software and its latest security holes.

EDIT: Nevermind that, tell him to learn how to code.

code:
http://access-anime.com/index.php?xd=media.htm

Is that what he calls secure?

This post was edited on 09-03-2005 at 03:45 PM by segosa.
The previous sentence is false. The following sentence is true.
09-03-2005 03:39 PM
Profile PM Find Quote Report
mwe99
Veteran Member
*****

Avatar

Posts: 2514
Reputation: 67
36 / Male / Flag
Joined: Jul 2004
RE: Website being hacked
I get:

You need to create a MySQL database, or edit the information in config.php
MySQL Error: Unknown database 'access_member'
09-03-2005 03:44 PM
Profile PM Find Quote Report
SikStyles
Senior Member
****

Avatar
DeathCult

Posts: 894
Reputation: 29
35 / Male / Flag
Joined: Jan 2005
O.P. RE: Website being hacked
quote:
Originally posted by segosa
Tell him to learn how to keep up to date on software and its latest security holes.

EDIT: Nevermind that, tell him to learn how to code.

code:
http://access-anime.com/index.php?xd=media.htm

Is that what he calls secure?



i dont know one thing about creating a website and php, i'll tell him that, and i think it was his friend who does all the coding i believe..sorry if i dont have a lot of information, if he gets back online i'll ask more about this

quote:
Originally posted by mwe99
I get:

You need to create a MySQL database, or edit the information in config.php
MySQL Error: Unknown database 'access_member'

this is what i get also, the website is down so i guess that is why

This post was edited on 09-03-2005 at 03:52 PM by SikStyles.
You're still breathing? Why?
Get off the cross, the wood is needed.
[Image: userbar.jpg]

09-03-2005 03:49 PM
Profile E-Mail PM Find Quote Report
segosa
Community's Choice
*****


Posts: 1407
Reputation: 92
Joined: Feb 2003
RE: RE: Website being hacked
quote:
Originally posted by SikStyles
quote:
Originally posted by segosa
Tell him to learn how to keep up to date on software and its latest security holes.

EDIT: Nevermind that, tell him to learn how to code.

code:
http://access-anime.com/index.php?xd=media.htm

Is that what he calls secure?

he took the site down so i dunno, i get that message also

i dont know one thing about creating a website and php, i'll tell him that, and i think it was his friend who does all the coding i believe..sorry if i dont have a lot of information, if he gets back online i'll ask more about this

quote:
Originally posted by mwe99
I get:

You need to create a MySQL database, or edit the information in config.php
MySQL Error: Unknown database 'access_member'



Tell him this.

You can't go blindly using include() on anything the user can input into the URL. That's just asking for trouble.

If you give a URL to PHP's include() function and URL wrappers are enabled (most servers) then it'll download and include it into the page.

If you write a PHP script and stick it inside a .txt file, upload it to your server and put its URL into the xd= line the contents of that file will be executed on the victim's server with the httpd's permissions.

If he coded the site, or his friend did, then he should know that that's a security hole.

The previous sentence is false. The following sentence is true.
09-03-2005 03:55 PM
Profile PM Find Quote Report
SikStyles
Senior Member
****

Avatar
DeathCult

Posts: 894
Reputation: 29
35 / Male / Flag
Joined: Jan 2005
O.P. RE: Website being hacked
quote:
Originally posted by segosa
Tell him this.

You can't go blindly using include() on anything the user can input into the URL. That's just asking for trouble.

If you give a URL to PHP's include() function and URL wrappers are enabled (most servers) then it'll download and include it into the page.

If you write a PHP script and stick it inside a .txt file, upload it to your server and put its URL into the xd= line the contents of that file will be executed on the victim's server with the httpd's permissions.

If he coded the site, or his friend did, then he should know that that's a security hole.

thanks a bunch Segosa :)
i'll tell him that :)
You're still breathing? Why?
Get off the cross, the wood is needed.
[Image: userbar.jpg]

09-03-2005 04:07 PM
Profile E-Mail PM Find Quote Report
« Next Oldest Return to Top Next Newest »


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts
HTML is Off
myCode is On
Smilies are On
[img] Code is On