堆栈内存溢出
  简体   繁体   English

在Godaddy共享的托管被黑的index.php和login.php被自动更改

[英]shared hosting at godaddy hacked index.php and login.php automatically changed

 原文  2017-09-30 06:53:20       php/ html/ shared-hosting

问题描述

yesterday many web application that i have hosted at godaddy shared hosting got defaced (hacked). 昨天,我在godaddy共享托管上托管的许多Web应用程序遭到破坏(被黑)。 They changed the index.php and login.php to follwing source code : 他们将index.php和login.php更改为以下源代码:

Deface By black sQl 由黑色sQl污损

HACKED BY black sQl WARNING!!! 被黑色shack警告!!!! Lets start to secure your website 让我们开始保护您的网站
But Remember This 但是请记住这一点
SECUIRITY IS AN ILLUSION!! 安全是一种错觉!
BD Black Hackers Cyber Army BD黑色黑客网络军
black sql::!hR V1Ru5::3lack D4G0N::TLM-V1Ru5 黑色sql ::!hR V1Ru5 :: 3lack D4G0N :: TLM-​​V1Ru5

i donot know how they did that as it is just the login page there is no usage of get and the username and password are only the fields the user can input and they are also cleaned before they enter any function. 我不知道他们是怎么做到的,因为这只是登录页面,没有使用get,用户名和密码只是用户可以输入的字段,在输入任何功能之前也会对其进行清理。

i checked the raw access logs and found some suspicious entries there. 我检查了原始访问日志,发现其中有一些可疑条目。 those are as following : 如下:

46.118.158.19 - - [29/Sep/2017:06:27:29 -0700] "GET / HTTP/1.1" 200 522 " http://pochtovyi-index.ru/ " "Opera/8.00 (Windows NT 5.1; U; en)" 46.118.158.19--[29 / Sep / 2017:06:27:29 -0700]“ GET / HTTP / 1.1” 200 522“ http://pochtovyi-index.ru/ ”“ Opera / 8.00(Windows NT 5.1; U; en)”

188.163.72.15 - - [29/Sep/2017:06:48:37 -0700] "GET / HTTP/1.1" 200 522 " https://educontest.net/ " "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)" 188.163.72.15--[29 / Sep / 2017:06:48:37 -0700]“ GET / HTTP / 1.1” 200 522“ https://educontest.net/ ”“ Mozilla / 4.0(兼容; MSIE 6.0; Windows NT 5.2; SV1; .NET CLR 1.1.4322; .NET CLR 2.0.50727)”

can anybody help me how to secure this kind of intrusion? 有人可以帮助我如何保护这种入侵吗?

1 个解决方案

解决方案1
 0  2017-09-30 07:06:43

It depends on how he has gained access. 这取决于他如何获得访问权限。

Major steps to take into consideration are: 要考虑的主要步骤是:

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 使用index.php中包含的login.php的PHP用户登录验证不起作用 - PHP User login validation using login.php included in index.php not working 登录失败后,在login.php中进行会话检查,而不是将其重定向到首页(index.php) - Session after login unsuccess and in login.php check for it, not redirect it to homepage (index.php) 专用login.php页面vs index.php检查登录数据 - Dedicated login.php page vs index.php checking for login data 为什么我从文件index.php到login.php的验证不起作用? - Why is my validation from files index.php to login.php not working? NodeJS Express共享对index.php的托管GET请求 - NodeJS Express shared hosting GET request for index.php Codeigniter应用程序被黑客入侵,代码注入index.php - Codeigniter application getting hacked, code injected in index.php Laravel 共享托管,index.php 不指向 root 而是停留在 public_htmls - Laravel shared hosting, index.php not pointing to root but staying at public_htmls Login.php 不重定向 - Login.php does not redirect login.php sql数据库 - login.php sql database Login.php脚本不起作用 - Login.php script not working
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM