Cleaning up files after hacking 17 December 2011
system, adminThis blog was hacked awhile ago. It was annoying, I hadn’t updated my blog software for awhile and there was a security hole. It was a good learning experience of how to deal with the intrusion. It was also nice to be able to quickly whip together some scripts to help clean everything up. This let me see which files were recently modified
find . -type f -mtime -3 | grep -v "/Maildir/" | grep -v "/logs/" The exploiters were modifying my .htaccess and adding a few files of their own, this deleted their files This code helped remove exploit code that was injected into all of the pages on the site. After upgrading my software and installing security patches, a bit of other cleanup, and file permission fixes everything was back to normal.
blog comments powered by Disqus
Hello, this is where I am publishing my old development blog as well as making new posts in the future. I am not that active with my blogigng these days, but perhaps with a new blog setup I will be slightly more motivated. Currently I am mostly involved with Ruby and mobile development. You can find my code on github.