0

I'm hosting with 1and1 UK a Joomla 1.5.26 website. This week we've been getting hacked and I do not know how to tackle the problem.

1and1 are COMPLETELY USELESS, answering a question like this "How did index.php change from 644 to 200 permissions" with this answer "to change the file permissions, follow these steps"..

Anyways, the questions I'm looking to have answered is:

What is the correct file/folder permissions setting? Is it: Folders 755 and Files 644?

Is there a component or another way in which to "search all files and folders and RESET the correct permissions"?

Is there a component or another way in which I can install additional security for both the files/folders, but also the database, to prevent these kinds of attacks?

Many thanks for your time

Valentin Despa
  • 40,712
  • 18
  • 80
  • 106
Mark
  • 290
  • 7
  • 23
  • 2
    you're pretty much limited with tools like for security if you're in a shared hosting. – tradyblix Oct 18 '12 at 10:30
  • Would dedicated hosting be the solution? Can anyone recommend managed dedicated hosting solutions in the UK? – Mark Oct 18 '12 at 12:23

3 Answers3

1

I understand that your website is hacked, but you need to be a bit more explicit what exactly is happening.

Anyway, as a general direction:

  • Protect your administrator directory with a .htaccess login file
  • Update components to the latest version, check if there are any security problems with some of your components in the version you have installed.
Valentin Despa
  • 40,712
  • 18
  • 80
  • 106
  • Specifically: index.php is being re-permissioned to 200 (from 644). The same is happening in a folder with .css and .js files that operate the admin menu system (media/system/css and /js). Also the securitykeycode file used with our payment gateway software is being changed to 200 too – Mark Oct 18 '12 at 12:20
  • which index.php? In administrator folder or in website? – Valentin Despa Oct 18 '12 at 12:25
  • in the root.. scarily enough the templates/[name]/index.php file had 777.. OMG! All files in my templates folder were 777 – Mark Oct 18 '12 at 14:02
1

I answered a question similar to this, regarding hacking a hile back. I think it may come in handy for you. Please see the link below. It gives you a load of things you should take into consideration along with security extension recommendations.

Joomla! 2.5.4 Hacked: Having trouble with diagnosis

Folders should always be 755 and files should always be 644. Don't make either of them 777 for any reason and it poses a security threat.

I dedicated server most likely won't be the solution. It won't prevent hackers and is rather expensive if dont correctly.

Hope this helps.

Community
  • 1
  • 1
Lodder
  • 19,758
  • 10
  • 59
  • 100
0

I suggest to use this plugin http://www.corephp.com/joomla-products/jomdefender.html#.UICsh1TDgb8

Good against bots, file integrity checks, all you mentioned.

Because you have outdated version of joomla, there is hardly to be another solution.

JTC
  • 3,344
  • 3
  • 28
  • 46