[FercKast]

Hey, I was in the middle of building my website. Today, I wanted to grab the urls of some pictures I already uploaded. However, I found instead that my website had been hacked. I already have changed my account & FTP passwords to be much stronger. But, I was wondering what else I ought to do before I start building my site from scratch again.


Domain: Link
First name (used in Client Area): Jared
Other Information: Free Hosting Plan (registered the domain on another site previously)

[UnknownHF]

I can probably help you out with this. IF you have aim or skype message me

Aim: yungstunnajawon
Skype: daxjoker

[daniel]

chmod everything to 644 so no one can edit except you

[FlightPilot]

People wont hack into your URL for no reason. Anyways, change the file permissions and all passwords of cPanel, DB etc,. Make it strong containing variables, symbols etc,. If this happens again let us know.

[FercKast]

daniel, on 19 April 2012 - 03:18 AM, said:

chmod everything to 644 so no one can edit except you

Thanks; I will go and do that now.

FlightPilot, on 19 April 2012 - 05:29 AM, said:

People wont hack into your URL for no reason. Anyways, change the file permissions and all passwords of cPanel, DB etc,. Make it strong containing variables, symbols etc,. If this happens again let us know.

Normally, I'd agree that URLs aren't hacked randomly; however, being a site that is/was still under construction, it seems to have been entirely random. Yep, I already have changed my CPanel, FTP, etc. passwords to now be "Very Strong", according to the meters on the password changing pages. I guess I'll change the permissions now, then. Thanks for the help.

EDIT: Now, my site is giving me a bizarre message:

Forbidden

You don't have permission to access / on this server.

Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

[FlightPilot]

it would be the changing of permissions i guess, have you updated index.php/html ?

[daniel]

someone could inject html code if file permission allows anyone to edit the file

[soumikbhat]

daniel, on 19 April 2012 - 01:04 PM, said:

someone could inject html code if file permission allows anyone to edit the file

i didn't get you...can you pls elaborate?

[FercKast]

FlightPilot, on 19 April 2012 - 12:57 PM, said:

it would be the changing of permissions i guess, have you updated index.php/html ?

Yes, I deleted the index.html and uploaded wordpress (again) into my main directory. I've set all the permissions to 744, but it still gives me that error.

[FlightPilot]

FercKast, on 19 April 2012 - 02:24 PM, said:

Yes, I deleted the index.html and uploaded wordpress (again) into my main directory. I've set all the permissions to 744, but it still gives me that error.

To make sure whats wrong Check the cPanel error logs and let know for any possible errors.