Please login or register.

Login with username, password and session length
Advanced search  

News:

Latest sNews - sNews 1.7 - with its own forums - for discussion and user mods.

Author Topic: Help, snews has been hacked on my site  (Read 2412 times)

Jamie Wilson

  • Newbie
  • *
  • Karma: 0
  • Posts: 13
    • http://www.acousticecosse.org
Help, snews has been hacked on my site
« on: January 19, 2007, 07:15:51 pm »

Hi

Please help! It appears that my website that I am currently building with snews has been hacked.  When the frontpage is loaded, the following is displayed:

TM N&tr.32 reporting bug...

OK


WARNING: Clicking OK doesn't apparently to do anything, but on google, some people have apparently been referred to a porn site.

I don't know whats happened or how to stop it! Please if someone knows how I can cure this, or can help at all, i'd be very grateful.

Neither can I log in as admin anymore!!

The site is www.acousticecosse.org

Very much out of his depth,

jamie
Logged
To try is to risk failure, but the risk must be taken, because the greatest hazard in life is to risk nothing.  The person who risks nothing, does nothing, has nothing, and is nothing.

Keyrocks

  • Doug
  • ULTIMATE member
  • ******
  • Karma: 449
  • Posts: 6020
  • Semantically Challenged
    • snews.ca
Help, snews has been hacked on my site
« Reply #1 on: January 19, 2007, 07:35:15 pm »

Welcome Jamie.  Have a look in the Announcement block at the top of these Forums pages, and you'll see a link to security fixes. Check this out. As well, see these security fixes before proceeding. Here is another post worth reading.  Do these mods to your files, then upload (overwrite) the changed files to your server, and download any suspicious ones you don't remember putting on your server... to a Quarantine folder on your hard drive. Then PM Mika (one of our our senior programmers) to see if he'd like copies of them to add to his information base.
Logged
Do it now... later may not come.
-------------------------------------------------------------------------------------------------
sNews 1.6 MESU | sNews 1.6 MEMU

Jamie Wilson

  • Newbie
  • *
  • Karma: 0
  • Posts: 13
    • http://www.acousticecosse.org
Help, snews has been hacked on my site
« Reply #2 on: January 20, 2007, 01:09:27 am »

Cheers Keyrocks!

I see I've appeared at the back of some very hard troubleshooting work!  Thank you to everyone involved.

I've implemented the htaccess patches, and the other security updates from that thread.  No odd unusual files were present.  However, a simple segment of script had been added within the main article on the home page.  The username and password was the same as someone's in the other script: sutzu.

Since making the changes to the snews.php and the htaccess file, when clicking on archive or contact, it can't find the page.  Have I made a mistake when making a change, I can't find a mistake have double checked it?!

Anyway cheers for the help!  This CMS is superb, as is the associated community.

jamie
Logged
To try is to risk failure, but the risk must be taken, because the greatest hazard in life is to risk nothing.  The person who risks nothing, does nothing, has nothing, and is nothing.

Fred K

  • Still trying to learn stuff
  • ULTIMATE member
  • ******
  • Karma: 130
  • Posts: 2728
    • Personal
Help, snews has been hacked on my site
« Reply #3 on: January 20, 2007, 02:25:04 am »

jamie,
did you add the security patch to the htaccess file or did you replace the existing code in the htaccess with the patch? The patch needs to be added to the already existing code, as outlined in the original fix post. The same situation has already been discussed here, by the way.
Logged

Jamie Wilson

  • Newbie
  • *
  • Karma: 0
  • Posts: 13
    • http://www.acousticecosse.org
Help, snews has been hacked on my site
« Reply #4 on: January 21, 2007, 01:42:01 pm »

Thank you.  I had indeed replaced the code.  I've now added it and all is well!

Cheers for all the help!

Jamie
Logged
To try is to risk failure, but the risk must be taken, because the greatest hazard in life is to risk nothing.  The person who risks nothing, does nothing, has nothing, and is nothing.