Elxis CMS Forum
Support => Security => Topic started by: mmarch on February 12, 2008, 12:01:58
-
Hi!!!
It was my fault for one of my site i forget enable a defender. Site was runing 2 or bit longer month. One day i checked google for my domain name and found that my site is listed as phishing site !!!
Look on it
http://64.233.183.104/search?q=cache:1aJY56qi2-cJ:www.millersmiles.co.uk/report/6497+cesiniekiem.org&hl=ru&ct=clnk&cd=4&gl=lv&client=firefox-a
Why it's happen??? How i can solve it?
Of course now i enabled defender.
-
I once had that problem, and I believe it's some security problem in cPanel. The same (ANZ) banking site was placed in my images directory. My hosting account got suspended due to phishing. This was a site with very little visits, which made it perfect for thieves to place their phishing site there. What you should do is to find where is this phishing site placed and delete it (e-mail accounts too), and tighten your security settings. I started by adding this into .htaccess file:
Options +FollowSymLinks
RewriteEngine on
RewriteCond %{HTTP_USER_AGENT} libwww-perl [NC]
RewriteCond %{REQUEST_URI} !^/403\.shtml$
RewriteRule .* - [F] I hope it helped you... this did the job for me.
-
this mean i should put this code in everyone account in my hosts, for everyone site??? Is there samething what i can discuss with hosting provider???
-
I added the above code (+ some more) to all of my sites... But, server setting is too large topic, and it is not for this forum. There are lots of other forums focused on server security, webmastering, etc... You should keep some of them in your bookmarks ;)
-
Ok many thanks. Maybe you can tell me same more code??? or place to looking for
-
Check your PM ;)
-
thank`s i will start learning this all stuff..... ::)