[TYPO3-english] Looking for typo3_src-4.0.2.tar.gz
Rudy Gnodde
rgn at windinternet.nl
Wed Apr 8 11:32:23 CEST 2009
Hello Martin,
Martin Bless wrote:
> BTW: What measures do you take in case you suspect the installation
> might have been hacked? Do we have guidelines collected already?
If it has been hacked the first thing you need to do is lock it down so
it can't be hacked again. So clean up anything the hacker might have
changed. Also change any password the hacker might have had access to:
backend users, frontend users, databases, anything that's known in TYPO3
or anything the user the webserver uses has access to even if it's
incrypted.
The next thing you might want to do is update TYPO3 and all extensions
so any known security bugs that have been fixed since 4.0.2 can't be
exploited anymore. And update it each time a new version is released.
You should also inform your provider if you don't host it yourself, so
they can check deeper into the server. If the server isn't locked down
correctly a hacker might have installed things like an IRC bot in the
/tmp directory for example.
Regards,
Rudy Gnodde
WIND Internet
More information about the TYPO3-english
mailing list