CSS Codes
CSS Layouts
Results 1 to 9 of 9

Thread: Web Security: Protecting against data injection

  1. 06-20-2009, 04:48 PM #1
    Keleth
    Keleth is offline Junior Coders
    Join Date
    Jun 2008
    Posts
    40
    Thanks
    2
    Thanked 4 Times in 4 Posts

    Default Web Security: Protecting against data injection

    I was hoping someone could help me out. As of late, a number of my sites have been injected with hidden iframes linking to sites that seem to download viruses onto the visitors computers. The only things that allow uploads are two wordpress installations, that are kept up-to-date, thus I'm assuming are secure enough to now allow something like this.

    Its getting frustrating, because I can't have visitors being infected then turning from my sites. I've changed my passwords multiple times, as well as changing them to >15 character alpha-numeric combinations. I can't figure out how someone is inserting text into my files. I'd love some help.
    Reply With Quote Reply With Quote
  2. 06-20-2009, 06:48 PM #2
    Jesdisciple's Avatar
    Jesdisciple
    Jesdisciple is offline Senior Coders
    Join Date
    Jul 2006
    Posts
    497
    Thanks
    8
    Thanked 70 Times in 70 Posts

    Default

    I'm not in-the-know about security by any stretch, but if you post a link I'll try reproducing the attack with a harmless URL and if I get it I'll tell you. For anything better than that, all I can tell you is to search for a security consultant to pay.
    -- Chris
    informal JavaScript student of Douglas Crockford
    I like wikis - a lot.
    Reply With Quote Reply With Quote
  3. 06-20-2009, 06:51 PM #3
    Keleth
    Keleth is offline Junior Coders
    Join Date
    Jun 2008
    Posts
    40
    Thanks
    2
    Thanked 4 Times in 4 Posts

    Default

    Well, part of my goal is to learn web security as well, but... The two URLs where it starts are...

    http://mafia.rhovisions.com
    http://noeasyanswers.com
    Reply With Quote Reply With Quote
  4. 06-20-2009, 06:59 PM #4
    Jesdisciple's Avatar
    Jesdisciple
    Jesdisciple is offline Senior Coders
    Join Date
    Jul 2006
    Posts
    497
    Thanks
    8
    Thanked 70 Times in 70 Posts

    Default

    From what I read at the second link, you think the attack was server-side, right? I thought you meant it was cross-site scripting (client-side) which was why I dared to try reproducing the attack. If I tried hacking a server (and I'd have to learn how first) without the administrator's permission, I'd probably meet him in court.

    So I think all I can tell you at all is to look for a consultant. However, if you really want to learn security you can try OWASP.
    -- Chris
    informal JavaScript student of Douglas Crockford
    I like wikis - a lot.
    Reply With Quote Reply With Quote
  5. 06-21-2009, 12:32 AM #5
    traq's Avatar
    traq
    traq is offline global $Moderator;
    Join Date
    Apr 2008
    Location
    So.Cal
    Posts
    3,643
    Thanks
    63
    Thanked 516 Times in 502 Posts
    Blog Entries
    5

    Default

    Two places to start:
    1. Have you asked around the Wordpress forums?
    2. Have you talked to your webhost? Hosts are usually pretty interested in preventing hacks on sites they host.
    you're postin' "me too" like some braindead AOL'er
    Reply With Quote Reply With Quote
  6. 06-21-2009, 04:48 AM #6
    Keleth
    Keleth is offline Junior Coders
    Join Date
    Jun 2008
    Posts
    40
    Thanks
    2
    Thanked 4 Times in 4 Posts

    Default

    Wordpress had nothing of use, and my host has yet to respond on the issue.
    Reply With Quote Reply With Quote
  7. 06-21-2009, 05:16 AM #7
    traq's Avatar
    traq
    traq is offline global $Moderator;
    Join Date
    Apr 2008
    Location
    So.Cal
    Posts
    3,643
    Thanks
    63
    Thanked 516 Times in 502 Posts
    Blog Entries
    5

    Default

    Do you have any idea where the attack occurred? Where did the bad code show up on your pages? Was it saved in a comment / somewhere in the database / in a link?
    you're postin' "me too" like some braindead AOL'er
    Reply With Quote Reply With Quote
  8. 06-23-2009, 05:17 PM #8
    Keleth
    Keleth is offline Junior Coders
    Join Date
    Jun 2008
    Posts
    40
    Thanks
    2
    Thanked 4 Times in 4 Posts

    Default

    So I missed that last comment...

    The comment is being directly inserted into my pages. There is no problem with the database (not being pulled from the DB).
    Reply With Quote Reply With Quote
  9. 06-23-2009, 07:47 PM #9
    traq's Avatar
    traq
    traq is offline global $Moderator;
    Join Date
    Apr 2008
    Location
    So.Cal
    Posts
    3,643
    Thanks
    63
    Thanked 516 Times in 502 Posts
    Blog Entries
    5

    Default

    To be clear: the bad code actually appears in your page's source code?

    I'm afraid that's beyond what I could help you with. I still think your best bet is you host's tech support. Good luck.
    you're postin' "me too" like some braindead AOL'er
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules