Digital Cipher Posted December 3, 2008 Share Posted December 3, 2008 Hi allI have had my site attacked, directories /img, /mails, /modules, /themes/prestashop/lang, /translations have had index.php removed.Following the prestashop install instructions all the above directories had there permissions set to 777 6. While you have your FTP connected to your Web hosting server, make sure the following PrestaShop folders have ‘write’ permissions (also known as “CHMOD 777” – explanation of file permissions here) but do not apply these permissions recursively (to their subfolders): /config, /upload, /download, /tools/smarty/compile. Then make sure the following folders have ‘write’ permissions and apply these permissions recursively (to their subfolders): /img, /mails, /modules, /themes/prestashop/lang, /translations Is this needed after the install is completed ?For the time being i have reset all file/dir permissions to 755 except /tools/smarty/compile which is still 777Can anyone advise me on this problem / attack Link to comment Share on other sites More sharing options...
Nommam Posted December 3, 2008 Share Posted December 3, 2008 did you another cms on your site?( joomla, spip, phpbb, SMF, dotclear, wordpress ... ) Link to comment Share on other sites More sharing options...
Digital Cipher Posted December 3, 2008 Author Share Posted December 3, 2008 Hi Nommammy site only hosts prestashop, no other files/apps are on there. Link to comment Share on other sites More sharing options...
Damien Metzger Posted December 3, 2008 Share Posted December 3, 2008 Why would a hacker delete these files oO ?Some host do not joke with security, maybe they've run a script deleting all 777 PHP files ?Has anyone else access (by ftp or other means) to your space ? Even with another account, even anonymous since the file are available for everyone ? Link to comment Share on other sites More sharing options...
ruilong Posted December 4, 2008 Share Posted December 4, 2008 What host do you use?I had an attack on a low budget hosting company, but that time it was another website on the server that got hacked and got access to my folder so all files got infected with some kind of virus, and it was not prestashop but joomla I run at that site.. ended up having to reinstall everything Link to comment Share on other sites More sharing options...
Digital Cipher Posted December 4, 2008 Author Share Posted December 4, 2008 my host is easyspace, i think the hacker removed the index.php files so they should try and list directory contents.after checking my other sites hosted with easyspace my main web site support engine has being hacked, that directory had a permission of 755Question for the preata team: which directories/files need 777 permissions (if any) ????? Link to comment Share on other sites More sharing options...
Damien Metzger Posted December 4, 2008 Share Posted December 4, 2008 All translations, images and upload folders, the config and the smarty compilation folders too.As specified at the beginning of the installation Link to comment Share on other sites More sharing options...
ruilong Posted December 4, 2008 Share Posted December 4, 2008 http://www.prestashop.com/wiki/Getting_Started/#Install_PrestaShop Link to comment Share on other sites More sharing options...
Paul C Posted December 5, 2008 Share Posted December 5, 2008 I's only a requirement to have 777 (666 - how apt) permissions IF YOUR SERVER REQUIRES IT and if it does then dump them. Most will work fine with 775 (664) or even 755(644). I would always suggest using the most stringent permissions that you can get away with.I never believe everything I read - especially not on the internet Paul Link to comment Share on other sites More sharing options...
Guest Posted December 9, 2008 Share Posted December 9, 2008 You may have a serious server security issue there with your host... Ask your host to provide you a new hosting on another server... Link to comment Share on other sites More sharing options...
Optikool Posted January 25, 2009 Share Posted January 25, 2009 Most hackers that are trying to teach you a lesson will just delete your files, but other hackers would just replace your files with their version. It doesn't make since for Presta to not tell you to write protect your config files. Maybe they just for got to put that in the docs. I plan to try removing write protection from everything and see what get affected. It would also be nice if we had the option to move the compiled smarty templates out of the document root since this is a writable directory and probably will need to stay writable. Link to comment Share on other sites More sharing options...
Guest Posted January 25, 2009 Share Posted January 25, 2009 You may check logs to be sure it was a hack... Also ask you host about that... Link to comment Share on other sites More sharing options...
TropischBruin Posted January 27, 2009 Share Posted January 27, 2009 I run multiple PS shops with 755 on folders and 644 on the files. No issues what so ever.Even the installations run without a glitch. Link to comment Share on other sites More sharing options...
Guest Posted January 27, 2009 Share Posted January 27, 2009 I run multiple PS shops with 755 on folders and 644 on the files. No issues what so ever.Even the installations run without a glitch. I agree with you, I too use to do that; all depend on how did the sysadmin lockdown the server... Link to comment Share on other sites More sharing options...
DaveGetStock Posted January 30, 2009 Share Posted January 30, 2009 I would definitly change your host Link to comment Share on other sites More sharing options...
Guest Posted January 30, 2009 Share Posted January 30, 2009 I would definitly change your host @Digital Cipher: who is your actual host, may we know it?... Link to comment Share on other sites More sharing options...
qasrani Posted February 5, 2009 Share Posted February 5, 2009 Hi allI have had my site attacked, directories /img, /mails, /modules, /themes/prestashop/lang, /translations have had index.php removed.Following the prestashop install instructions all the above directories had there permissions set to 7776. While you have your FTP connected to your Web hosting server, make sure the following PrestaShop folders have ‘write’ permissions (also known as “CHMOD 777” – explanation of file permissions here) but do not apply these permissions recursively (to their subfolders): /config, /upload, /download, /tools/smarty/compile. Then make sure the following folders have ‘write’ permissions and apply these permissions recursively (to their subfolders): /img, /mails, /modules, /themes/prestashop/lang, /translations Is this needed after the install is completed ?For the time being i have reset all file/dir permissions to 755 except /tools/smarty/compile which is still 777Can anyone advise me on this problem / attack I guess problem is with permissions. Try to restore previous permissions Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now