Go Back   WarriorForum - Internet Marketing Forums > The Warrior Forum > Main Internet Marketing Discussion Forum
Register Blogs FAQ Social Groups CalendarHelp Desk

Reply
 
LinkBack Thread Tools
Old 10-20-2009, 05:01 AM   #1
Senior Warrior Member
War Room Member
 
Mohsin Rasool's Avatar
 
Join Date: Jan 2006
Location: Pakistan
Posts: 3,271
Thanks: 361
Thanked 245 Times in 109 Posts
Social Networking View Member's FaceBook Profile  View Member's Twitter Profile 
Default Cpanel Users - You need to take care of That Digital Junk...

Hi,

If you have Cpanel at your hosting..you are lucky
I mean how easy it is to just do few clicks and Wordpress is installed,
same case is with, Joomla, PhpBB, OSticket, Zen Cart and so much stuff...

As this is so easy to install... Myself included , I have seen many people
do many test installs on the server like Joomla 1.5 in a sub-folder of test purpose,
and phpbb forum at another sub-folder and simpleMachineForum forum at another....

Objective was just to test the things, to pick and choose b/w different scripts...
It was great until this week...a BIG danger-hole was discovered....

You know the scripts we installed, and never used are not going to upgrade
automatically...so they are there unattended!

Big target for hacking...this is what happened with a server of our client, they were hacked through the old Zen cart install at their server which he did years ago just to
test !!!

So this is a reminder that you please make sure their is no unattended install of any
script at your server which is not updated to current version which can give a backdoor
to hackers to hack your website.

It is very simple to check what you have installed at your server thought Cpanel so far..
and from the list check what is outdated and not needed anymore...simply uninstall that..

to check the list of current Cpanel fantastico installs list:
Go to your Cpanel > Fantastico > in the right-sidebar-bottom is a link : " Installations overview" . Click that and you will be presented with a whole list of installations...

Now please set aside some time today or tomorrow and delete all the unused stuff,
yeah clear the old unused digital junk from your server for another step forward
regarding better security.

Best Regards,
Mohsin
PS. Also do not forget to take your Files and Databases backup on daily/weekly basis
depending the nature of the website.

Really It was not great to know that whole site has been damaged screwing the all
marketing and SEO efforts ... Do you care your business? Then please take some time
and set a schedule for backup and follow that religiously.

Free Instant Traffic - http://www.FreeInstantTraffic.com
Stealth Forum Marketing - http://www.StealthForumMarketing.com/
Outsource Website Development & Blog Creation @ http://www.WarMarks.com
Mohsin Rasool is offline   Reply With Quote
Old 10-20-2009, 08:10 AM   #2
Warrior Member
 
Join Date: Oct 2009
Posts: 10
Thanks: 0
Thanked 1 Time in 1 Post
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Really useful..that's why i don't like to use for every little need plugins or any other tools that might be hacked easily because of forgetting upgrading
Thank you for sharing.

LoraGi is offline   Reply With Quote
Old 10-20-2009, 08:31 AM   #3
TheRichJerksNet
Guest
 
Posts: n/a
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Upgrading does not stop hacking, it's open source code and since it is given to everybody that wants to download (including hackers) no open source code is safe. No matter what version you are running. Only way to make sure it is secure is to do it yourself my modifying the coding.

James
  Reply With Quote
Old 10-20-2009, 08:56 AM   #4
Active Warrior
 
Join Date: Oct 2009
Posts: 39
Thanks: 1
Thanked 3 Times in 2 Posts
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Originally Posted by TheRichJerksNet View Post
Upgrading does not stop hacking, it's open source code and since it is given to everybody that wants to download (including hackers) no open source code is safe. No matter what version you are running. Only way to make sure it is secure is to do it yourself my modifying the coding.

James
Wouldn't it be difficult for a newbie(me) to modify the coding?
MichelledGrace is offline   Reply With Quote
Old 10-20-2009, 09:00 AM   #5
Senior Warrior Member
War Room Member
 
Kay King's Avatar
 
Join Date: Sep 2004
Location: Gulf Coast, USA.
Posts: 15,134
Thanks: 3,680
Thanked 4,123 Times in 2,248 Posts
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Good reminder - I guess I have a good habit for a change as I uninstall any tests before installing a new one.

If I've been playing around in cpanel trying out some things I delete the public_html folder and make a new one.

kay


Kay King is offline   Reply With Quote
Old 10-20-2009, 09:00 AM   #6
TheRichJerksNet
Guest
 
Posts: n/a
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Originally Posted by MichelledGrace View Post
Wouldn't it be difficult for a newbie(me) to modify the coding?
That is why you buy a product (from a well respected person) that secures the scripts... Better yet spend some money on your business and hire a real developer that can build a custom built site that hackers do not have access to..

James
  Reply With Quote
Old 10-20-2009, 09:05 AM   #7
aka Avenuegirl
War Room Member
 
Jill Carpenter's Avatar
 
Join Date: Feb 2008
Location: Right where I want to be...
Posts: 5,419
Blog Entries: 23
Thanks: 1,337
Thanked 1,862 Times in 1,078 Posts
Social Networking View Member's Myspace Profile  View Member's FaceBook Profile  View Member's Twitter Profile  View Member's YouTube Profile
Contact Info
Send a message via Skype™ to Jill Carpenter
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Yes, I'm in the process of hauling out a lot of tests, etc. Unlimited plans have a limit. I recently discovered I can have 200,000 files, but at 50,000 they will start to keep an eye on you and I am past that. A lot of it is themes, joomla and wp installs, and some other tests which really are just wasting space.

Even with the cpanel it can all start to look a bit cluttered.

Jill Carpenter is online now   Reply With Quote
Old 10-20-2009, 01:07 PM   #8
Glad I Got Canned
 
Join Date: Sep 2008
Location: NY
Posts: 681
Thanks: 330
Thanked 61 Times in 57 Posts
Social Networking View Member's Twitter Profile  View Member's YouTube Profile
Default Re: Cpanel Users - You need to take care of That Digital Junk...

This is great advice. Thanks for the reminder. What was the nature of the damage to your client's sites? Just cosmetic or were their revenues being stolen?

SurviveUnemployment is offline   Reply With Quote
Old 10-20-2009, 01:09 PM   #9
Glad I Got Canned
 
Join Date: Sep 2008
Location: NY
Posts: 681
Thanks: 330
Thanked 61 Times in 57 Posts
Social Networking View Member's Twitter Profile  View Member's YouTube Profile
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Upgrading does not stop hacking, it's open source code and since it is given to everybody that wants to download (including hackers) no open source code is safe.
Actually it's the other way around. Open source is the safest because so many people are looking at the code and improving it. Custom scripts are much easier to hack. It's not like hackers can't see what your script is doing and probe it for holes until they find one.

SurviveUnemployment is offline   Reply With Quote
Old 10-20-2009, 01:18 PM   #10
TheRichJerksNet
Guest
 
Posts: n/a
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Originally Posted by SurviveUnemployment View Post
Actually it's the other way around. Open source is the safest because so many people are looking at the code and improving it. Custom scripts are much easier to hack. It's not like hackers can't see what your script is doing and probe it for holes until they find one.
Sorry been building "custom" sites for over 15 years.. This is why you see so many wordpress blogs and many other free scripts hacked, because they are open source.

Why do you think so many people go and get custom built sites, because they do not want others knowing how their scripts work thats why...

Nothing is 100% secure but I rather have a lock on my door vs having my door wide open for all to enter.

James
  Reply With Quote
Old 10-21-2009, 07:18 AM   #11
Senior Warrior Member
War Room Member
 
Mohsin Rasool's Avatar
 
Join Date: Jan 2006
Location: Pakistan
Posts: 3,271
Thanks: 361
Thanked 245 Times in 109 Posts
Social Networking View Member's FaceBook Profile  View Member's Twitter Profile 
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Originally Posted by SurviveUnemployment View Post
This is great advice. Thanks for the reminder. What was the nature of the damage to your client's sites? Just cosmetic or were their revenues being stolen?
You are welcome.

No, no direct financial fraud...but financial were affected due to affected SEO...

As every page was linked to bad neighborhood..a wide spread network of linking
victim sites ultimately directing traffic and SEO ranks to their spam sites...

Any site like this is badly affected in SERPs and it hurts SEO, traffic, and ultimately sales.


Mohsin

Free Instant Traffic - http://www.FreeInstantTraffic.com
Stealth Forum Marketing - http://www.StealthForumMarketing.com/
Outsource Website Development & Blog Creation @ http://www.WarMarks.com
Mohsin Rasool is offline   Reply With Quote
Old 10-21-2009, 07:23 AM   #12
Senior Warrior Member
War Room Member
 
Ralf Skirr's Avatar
 
Join Date: Aug 2006
Location: Germany & Thailand
Posts: 1,269
Thanks: 78
Thanked 138 Times in 104 Posts
Social Networking View Member's FaceBook Profile  View Member's Twitter Profile 
Default Re: Cpanel Users - You need to take care of That Digital Junk...

That's a good reminder to look at my servers and simply delete all the scripts that aren't needed anymore. There's just too much old stuff...


Thanks
Ralf

Google Plus anyone? Meet me at http://gplus.to/RalfSkirr. How to get a '+1 button' or 'Follow Me at Google+ button' for your website.
Ralf Skirr is offline   Reply With Quote
Old 10-21-2009, 07:30 AM   #13
Senior Warrior Member
War Room Member
 
Mohsin Rasool's Avatar
 
Join Date: Jan 2006
Location: Pakistan
Posts: 3,271
Thanks: 361
Thanked 245 Times in 109 Posts
Social Networking View Member's FaceBook Profile  View Member's Twitter Profile 
Default Re: Cpanel Users - You need to take care of That Digital Junk...

Quote:
Originally Posted by TheRichJerksNet View Post
Sorry been building "custom" sites for over 15 years.. This is why you see so many wordpress blogs and many other free scripts hacked, because they are open source.

Why do you think so many people go and get custom built sites, because they do not want others knowing how their scripts work thats why...

Nothing is 100% secure but I rather have a lock on my door vs having my door wide open for all to enter.

James
Hey James,

Why you want to start the debate on Open-Source vs Closed-Source, on every thread talking about any Open Source package.

It is fact that thousands of Warriors use them daily for their businesses and It is necessary
for them to know what they can do in this regard which helps their business in anyway.

This thread was not meant to discuss the Merits and De-Merits of Open source Vs proprietary code... Everything has its own pros and cons.

If you really want to educate the Warriors about the pros and cons of both, i suggest
you start a thread with the title: Dis Advantages of Open Source and How one can Fix them... and let all the community members discuss there...

No one can deny the reality that Open Source scripts are the most used by
most of the IMers (the members of this community), so we just cannot stop them using open source and compel them to opt for some paid programmer!

Instead we should help and encourage them to benefit from open source, save money
and time and use the best of the best code! Yes you can help them secure their open source by giving the tips and code hacks you suggest but do not ask everyone to go
for some programmer for a fee..

Peace,
Mohsin

Free Instant Traffic - http://www.FreeInstantTraffic.com
Stealth Forum Marketing - http://www.StealthForumMarketing.com/
Outsource Website Development & Blog Creation @ http://www.WarMarks.com
Mohsin Rasool is offline   Reply With Quote
Old 10-21-2009, 08:19 AM   #14
TheRichJerksNet
Guest
 
Posts: n/a
Default Re: Cpanel Users - You need to take care of That Digital Junk...

I started no debate, I made a factual statement - Upgrading to the latest version of something does not make you secured.

As one warior told me before "Let them be hacked and when they are then maybe they will realize they should have paid for a real solution instead of being cheap".

James
  Reply With Quote
Reply

  WarriorForum - Internet Marketing Forums > The Warrior Forum > Main Internet Marketing Discussion Forum

Tags
care, cpanel, digital, junk, users

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off



All times are GMT -6. The time now is 07:42 PM.