Yes, absolutely true Bec.....and because of this issue I lost my whole Saturday
Yes, absolutely true Bec.....and because of this issue I lost my whole Saturday
Luke brought up another good point. Once we figured out how they were finding sites to hack (easily via google looking for specific folders with hackable script names) ... a good rule of thumb is to NOT name a folder the same name as the script it contains!!!! GIVE IT A NEW NAME!! You may have to adjust your config file and possibly some links to reflect the new folder name, but that's a lot less painful than getting hacked.
This whole experience also gives me pause about using "free" scripts that insist on having their script name/addy on every page unless you buy it ... again, opens up easily searched for domains using that script.
Great tips guys thanks for the info :bunny:
Posting Permissions
Reply With Quote
Bookmarks