Security

Questions about how to install and problems installing - please read the documentation first!
Post Reply
Bibber
Posts: 40
Joined: Mon Sep 08, 2008 2:01 pm

Security

Post by Bibber » Thu May 14, 2009 6:53 pm

A site of mine has been hacked 2 times by Pirates and I want to reinforce the security. I first set login to wwwaut. The server is Linux and there should be no problem. But when loggin in, it wont accept the username and password - though correct (I have checked login.php and config.php!) Then I changed to javascript login - it works - but I don't know if that is a better security ? And if I want to remove the loginlink from the frontpage the "&login" doesn't work... Any idea of what is the best solution ?

Thx in advance !
Top
Holger
Site Admin
Posts: 3470
Joined: Mon May 19, 2008 7:10 pm
Location: Hessen, Germany

Re: Security

Post by Holger » Thu May 14, 2009 8:30 pm

I don't think that someone hacked your password.

I think it's a problem with your host.
Maybe insecure server settings?

Update to the latest CMSimple version, set correct file permissons, run PHP with register_globals = off.

WBR
Holger
Top
johnjdoe
Posts: 571
Joined: Tue May 20, 2008 6:32 am

Re: Security

Post by johnjdoe » Fri May 15, 2009 6:41 am

In addition you could install the plugin GXSecurity ...
Top
Post Reply

Return to “Installation”