mooxe
13-06-2008, 04:55
Hey guys...
Well my servers are still being hacked. Heres what I have done so far..
1. /tmp directory will no longer allow executables
2. Restarted my servers from scratch, new passwords which are 8+ characters, upper/lower case & numbers.
3. IPTables blocking all IPs to the TCPQuery port, except those IPs from www.tsviewer.com.
What I want to do now is..
1. Password protect the webadmin panel with an .htaccess file or similair type security. However, the httpdocs directory is not in a normal web accessable directory. An .htaccess file I used there did not work.
2. Using IPTables to drop all incoming requests to the HTTPServer Port from all but my own IP range. I cannot get this rule correct.
3. Change the login.html and slogin.html names to something else. I tried this myself but for some reason I could not get to the superadmin login. I renamed the link in the login.html fpr the slogin.html, and also rename the slogin.html but it would not forward me to that url.
Well my servers are still being hacked. Heres what I have done so far..
1. /tmp directory will no longer allow executables
2. Restarted my servers from scratch, new passwords which are 8+ characters, upper/lower case & numbers.
3. IPTables blocking all IPs to the TCPQuery port, except those IPs from www.tsviewer.com.
What I want to do now is..
1. Password protect the webadmin panel with an .htaccess file or similair type security. However, the httpdocs directory is not in a normal web accessable directory. An .htaccess file I used there did not work.
2. Using IPTables to drop all incoming requests to the HTTPServer Port from all but my own IP range. I cannot get this rule correct.
3. Change the login.html and slogin.html names to something else. I tried this myself but for some reason I could not get to the superadmin login. I renamed the link in the login.html fpr the slogin.html, and also rename the slogin.html but it would not forward me to that url.