Sunday, February 27, 2011

Finally cleared up the mess created up by hackers

Some of my websites hosted on dreamhost were compromised and iframe pointing to a url http://alcobro.net/t.php was added to all the index.html and index.php files. Had to wack my brains a bit to find the solution though. Finally saw the solution on the dreamhost wiki article Recovering from an iframe injection hack. The solution was relatively easy but the difficult part was figuring out how they got in. Also the mess of changing all the passwords is not something I really enjoy.
If nothing else this exercise made me realize that I need to create separate user and profile for each domain. Though it will be a little messy but still better than having all the domains hacked in one go. Wasted a whole day in cleaning the mess and creating backups and removing things that I did not need on the server.

No comments: