Quote:
|
That exploit is loaded through a compromised FTP account.
|
Is there anything CD34 doesnt know? Its kinda scary.
Here's a few tips to help prevent said comprimization. This is really just for dedicated servers, unless your host wants to go through the rigmarole for all the shared accounts.
1: put your ftp daemon and your http daemon on different IP addresses.
2: firewall you ftp IP to silently drop all requests not from your IP address at home.
3: use a different port.
4: use sftp.
Nothing will make your site unhackable, but keep in mind the two guys walking in the woods talking about bears. One guy says if he sees a bear he's gonna run. The second guy says, thats dumb, you cant outrun a bear. The first guy replies, I dont have to outrun the bear, I only have to outrun you.
IOW, dont be the low-hanging fruit.