hi all,
my hosting provider mailed me today had take 1 of website's offline due security leak.
my question is, security leak of joomla or of adon components or modules.
and can it?
this provider send me :
perl 32347 valleibe 3u ipv4 98484524 tcp lin01.belgon.be:40409->dana.basefreak.nl:6668 (established)
perl 12250 valleibe 3u ipv4 98483317 tcp lin01.belgon.be:40402->london.uk.eu.undernet.org:6668 (established)
perl 31352 valleibe 3u ipv4 106821919 tcp lin01.belgon.be:34038->undernet.xs4all.nl:6666 (established)
perl 541 valleibe 3u ipv4 116443802 tcp lin01.belgon.be:52313->undernet.it-ss.be:6669 (established)
healp me please
my hosting provider mailed me today had take 1 of website's offline due security leak.
my question is, security leak of joomla or of adon components or modules.
and can it?
this provider send me :
perl 32347 valleibe 3u ipv4 98484524 tcp lin01.belgon.be:40409->dana.basefreak.nl:6668 (established)
perl 12250 valleibe 3u ipv4 98483317 tcp lin01.belgon.be:40402->london.uk.eu.undernet.org:6668 (established)
perl 31352 valleibe 3u ipv4 106821919 tcp lin01.belgon.be:34038->undernet.xs4all.nl:6666 (established)
perl 541 valleibe 3u ipv4 116443802 tcp lin01.belgon.be:52313->undernet.it-ss.be:6669 (established)
healp me please
without mor einformation impossible cause of breach is, in general, joomla! not have known secuirty issues. looks irc bot has been placed on site, means attacker have needed copy files account, point incorrect or open permissions (777) , possibly php register_globals being turned on well, , have been executed through vulnerable extension. can review vulnerable extensions faq on site list on known problem extensions, review permissions settings , check server logs determine how happened exactly.
if review joomla! admins security checklist, sure find of information looking for;
joomla! administrators security checklist
http://forum.joomla.org/index.php/topic,81058.0.html
security faq table of contents
http://forum.joomla.org/index.php/topic,102558.0.html
faq: joomla! permissions overview
http://forum.joomla.org/index.php/topic,121470.0.html
if review joomla! admins security checklist, sure find of information looking for;
joomla! administrators security checklist
http://forum.joomla.org/index.php/topic,81058.0.html
security faq table of contents
http://forum.joomla.org/index.php/topic,102558.0.html
faq: joomla! permissions overview
http://forum.joomla.org/index.php/topic,121470.0.html
Comments
Post a Comment