Grow your CSS skills. Land your dream job.

htaccess from a hacked site

  • # November 15, 2012 at 5:00 pm

    Hi I recently had to clean up a friends site which was hacked. The hack inserted code into every index.php page as well as every .js file. What was interesting though was the fact that they changed the sites main htaccess file to read:

    # -FrontPage-

    IndexIgnore .htaccess */.??* *~ *# */HEADER* */README* */_vti*

    order deny,allow
    deny from all
    allow from all

    order deny,allow
    deny from all

    Just wondering if someone can shed some light on what this would accomplish? Thanks guys!

    # November 15, 2012 at 5:02 pm

    Edit sorry it stripped all the tags out….

    # -FrontPage-

    IndexIgnore .htaccess */.??* *~ *# */HEADER* */README* */_vti*

    order deny,allow
    deny from all
    allow from all

    order deny,allow
    deny from all
    __
    # November 15, 2012 at 8:54 pm

    near as I can tell (and I’m not positive), that seems to be the standard junk that Microsoft FrontPage throws into a .htaccess file. Are you sure it was a result of the attack?

    # November 16, 2012 at 11:55 am

    Yeah I thought it was strange as well. But yes it happened with the attack. All of the index.php files had code injected and the normal htaccess file was overwritten with the one I posted.

    # November 16, 2012 at 6:11 pm

    Probably the Russians or Chinese, i have about 20-100 attempts into my server a day.

    https://www.countryipblocks.net/

    # November 16, 2012 at 8:59 pm

    @JohnMotylJr They could just use a proxy to bypass that.

Viewing 6 posts - 1 through 6 (of 6 total)

You must be logged in to reply to this topic.

*May or may not contain any actual "CSS" or "Tricks".