Search Advanced Search
Categories
cPanel (6)
Domain Names (2)
E-Commerce & SSL (1)
Security (4)
FTP (2)
Software (0)
WHM (1)
Search Articles
Advanced Search
Frequently Asked Questions
Search our FAQ to find resolutions to common issues.
Favorite Articles
Search Articles that you have marked as your favorite.
Our Links
Web Development
E-Commerce Solutions
Search Engine Optimization
Reseller Hosting
Web Hosting
My Site was Hacked, What Do I Do?

The security of your hosting space is a two-fold responsibility. Sabaiko as the webhost, has a responsibility to ensure that all server-side software is up to date and has all necessary security patches applied. Our Technical support staff regularly watches for security bulletins regarding your server's software. Our kernels are kept up to date, non-standard ports are closed off in our aggressive firewall, and server software is kept at the latest stable, secure version.

The other half of the responsiblity falls on you as a client. Sabaiko does not monitor the content you put on your website, you are free to host a wide range of scripts from shopping carts to image galleries. Similar to our precautions server side, it is a good idea to ensure that the software or scripts you use are kept up to date within your user space. Developers of web-based scripts release new updates to their software periodically. These updates often contain feature upgrades, but more importantly contain security updates as well. By keeping your scripts up to date, you ensure that the latest security holes are patched and only the content you post is displayed on your website.

In addition to keeping your scripts up to date, you want to make sure you maintain secure passwords. A secure password consists of letters, lowercase and uppercase, and numbers composed in a random pattern. At the very least, you want to ensure your passwords do not occur in a dictionary. It is not uncommon for hackers to attempt what is called a "Dictionary Attack". In such an attack, all of the words contained within a dictionary are guessed as a possible password. If your password occurs in the dictionary, such a brute-force guessing attack will suceed and allow unauthorized visitors access to privilleged information. Here are a few examples:

Bad Passwords:
password
sailboat
admin
yellow

Good Passwords:
hal2kejslIs9
122l0745Js
Plwn24sueh37

Your passwords should be 8-15 characters in length and, if you cannot remember it, should be written down in a location only you are aware of. Do not share passwords with untrusted individuals.

If you are hacked, the best course of action is to clear out all of the content within your user space and reupload your documents from trusted backups. This is the only true way to ensure you have cleared out all untrusted material. Once your account is compromised, it is possible that the attacker has installed a backdoor for future attempts. In such circumstances, even if you determine the original source of the intrusion, a hidden backdoor allows the hacker entry to your user space. In addition to reuploading your website's content, you should install new, latest versions of all the software you use on your site to ensure there are no security exploits.

As the saying goes, an ounce of prevention is worth a pound of cure. Recovering from a hacking can be time consuming, not to mention detrimental to your site's image. By following the preventative measures above, you can spare yourself the hassle of restoring your site and removing unwanted material.

If you have installed any scripts through Fantastico within your cPanel, you can have Fantastico automatically contact you when a new update is available for any of the scripts you have installed. Within the Fantastico area, click on Email Notifcations under the "Extras" section. When you receive an email notification from Fantastico, be sure to update your scripts appropriately.
Print  Email  Save  Comments  Notify Me  Add to Favorites 
Article ID: 10010 Article Created: 01-31-2009 08:58 AMLast Modified: 01-31-2009 08:58 AM

How well did this article answer your question? 100% 75% 50% 25% 0%

Most Recently Viewed Articles
My Site was Hacked, What Do I Do?
The security of your hosting space is a two-fold responsibility. Sabaiko as the webhost, has a responsibility to ensure that all server-side software is up to date and has all necessary security patches applied. Our Technical support staff regularly watches for security bulletins regarding your server's software. Our kernels are kept up to date, non-standard ports are closed off in our aggressive firewall, and server software is kept at the latest stable, secure version....
What is the path to curl?
The path to curl is: /usr/bin/curl...
Protect youself from Phishing
An educated user is a safe user. We want your experience with us to be as memorable as possible, but for the right reasons! Becoming familiar with how you can protect yourself from unauthorized intruders will help to ensure you have a pleasant stay with Sabaiko. Your security is our concern. The following will give you some background information in phishing and help to lay out the part you play in ensuring your web space is safe and secure. ...
DNS Propagation Explained
Propagation is a term you'll often hear when working with your domain's DNS settings, but what does it mean? Anytime you visit a website in your web browser, there is a lot going on behind the scenes to provide you with the requested content. When you load a webpage, your computer first attempts to resolve the domain you are visiting to an IP address. Domain names are a convention created to make websites easier to remember, but your browser needs a numeric address in order to fetch any website data. DNS is what allows your machine to make this translation....
What is the path to ImageMagick?
The path to ImageMagick may vary from system to system. ImageMagick will usually reside in: /usr/bin/...
Using FTP in Firefox 3
To start this article off, I'd like to first note that we DO NOT suggest using FireFox or any web browser for connecting to FTP. Simply put, web browsers are for browsing the web. Your refrigerator would cool your house if you left the door open, but it's not intended for that purpose. Similarly, browsers are not intended to function as an FTP client and, while they do support some FTP-like features, they are very limited in their FTP functionality....
phpBB3 Hardening
phpBB is a very popular, web-based forum software. As of the time of this writing, the current phpBB version is phpBB3. If you are running an older version of phpBB, we highly recommend that you upgrade your forums immediately. phpBB version 3 contains many useful features for securing your forums. As always, it's best to run the latest version of any web-based software to ensure any security holes are patched and your software can be trusted....
Register Globals & php.ini
All PHP implementations run with a default set of values for configuration variables. Such variables control properties such as the amount of memory a PHP script can use, whether to register global variables, where to store SESSION variables and much more....
What is a Remote Access Key?
WHM provides you with a Remote Access Key for allowing 3rd party scripts to access your WHM on Reseller, Virtual, or Dedicated plans. You can allow external scripts to perform a multitude of tasks from account creation, account termination, account suspensions and much more. ...
What is Hotlink Protection?
HotLink Protection prevents other websites from directly linking to files on your website. ...