Thread: Hacked!!!
View Single Post
  #15  
Old 2nd March 2010, 12:26
till till is online now
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,715
Thanks: 820
Thanked 5,321 Times in 4,174 Posts
Default

There are a few general recommendations to prevent this in future:

a) Install all updates regularily. I check at least one one of my servers every few days, If i see that there are updates available, I login to every server and install the updates.

b) Try to protect phpmyadmin, the following options might help:

- Add a robots.txt in the phpmyadmin filder which denies spidering, so your phpmyadmin install is not listed in the major search engines.
- Dont name the phpmyadmin folder phpmyadmin.
- The ultimate but not always usable method to secure phpmyadmin is to add a password protection with a .htaccess file.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote