Hacker problem
PostPosted: Tue Nov 15, 2005 7:54 pm
Hey everyone! I've been asking other people about this but I'd thought I'd post it up here, just in case any of you had some suggestions.
Now I took a Perl class in college so I know all about the evils of 777 permissions, however that's all I've been able to get to work with my upload forms. So I have several 777 folders all over the place on my server space. Now it seems though a hacker is taking advantage of them to upload huge movie files to any folder I have with 777 permissions. I tried emailing my hosting about it, in case they could trace it, but they said it was uploaded by (and I quote) "Nobody" and then proceeded to lecture me about not using 777 permission on my folders.
Someone else suggested that maybe my forms that allow file uploads are providing the hacker with a way in, but I double checked and all my forms with file uploads are password protected with sessions, and they only allow picture files under 1 meg to be uploaded. So I don't think it's them.
Any ideas? I tired camping out on FTP manager, and my Latest visitors report to see if I could catch the hacker but so far have been uncessful (which I'm pretty sure means that he/she is not using FTP at least).
Now I took a Perl class in college so I know all about the evils of 777 permissions, however that's all I've been able to get to work with my upload forms. So I have several 777 folders all over the place on my server space. Now it seems though a hacker is taking advantage of them to upload huge movie files to any folder I have with 777 permissions. I tried emailing my hosting about it, in case they could trace it, but they said it was uploaded by (and I quote) "Nobody" and then proceeded to lecture me about not using 777 permission on my folders.
Someone else suggested that maybe my forms that allow file uploads are providing the hacker with a way in, but I double checked and all my forms with file uploads are password protected with sessions, and they only allow picture files under 1 meg to be uploaded. So I don't think it's them.
Any ideas? I tired camping out on FTP manager, and my Latest visitors report to see if I could catch the hacker but so far have been uncessful (which I'm pretty sure means that he/she is not using FTP at least).