Home arrow Security arrow Regaining Control of a Hacked PHP-Nuke Site

Regaining Control of a Hacked PHP-Nuke Site

PHP-Nuke is spreading over the Internet as a popular CMS system. If you have a PHP-Nuke installation which has been hacked into, read on to find out how to regain control of your site. If your site hasn't been hacked, read on to learn how to secure your installation.

TABLE OF CONTENTS:
  1. Regaining Control of a Hacked PHP-Nuke Site
  2. Bugs and How
  3. Regain your Site
  4. Cleaning up
By: Vinu Thomas
Rating: starstarstarstarstar / 37
May 18, 2004

print this article
SEARCH DEV SHED

TOOLS YOU CAN USE

advertisement

Introduction

PHP-Nuke is widely used, open source content management system (CMS) using PHP and MySQL. PHP-Nuke allows you to add and edit content on to your site without having to play around with HTML files. The whole content system runs off a database. Apart from MySQL, this CMS also supports SQL Server, Oracle, Access and Postgres databases. This allows PHP-Nuke to run on most platforms.

PHP-Nuke allows you to integrate extra functionality to the site, by adding them as modules. This modular concept of CMS allows webmasters to customize the functionality of the CMS system to their requirement. PHP-Nuke has various built-in modules like user registration, downloads, news, article sections, FAQ and web links. Apart from the built in modules, there are a variety of third-party modules which add in a lot more functionality to this CMS.

I've been running PHP-Nuke to manage content on my site since 2003. A lot of people have posted their views online stating that this system was quite insecure. I didn't pay much heed to these warnings, since this is one of the more popular CMS systems on the Internet. I had thought that since a lot of people were working on the system, all the bugs would be fixed up soon. I was in for a shock recently when my PHP-Nuke installation was hacked. In this article I have outlined how to overcome an attack on your Nuke installation and patch up the system to prevent further attacks. Even if your installation has not been hacked into yet, read on to learn how patch up your site to prevent such attacks on your site.



 
 
>>> More Security Articles          >>> More By Vinu Thomas
 

blog comments powered by Disqus
escort Bursa Bursa escort Antalya eskort
   

SECURITY ARTICLES

- Secure Your Business for Data Privacy Day
- Google Testing Security Fob Password Alterna...
- Security News Highlights Concerns
- Going to Extremes for Data Security
- Skipfish Website Vulnerability Scanner
- Critical Microsoft Visual Studio Security Pa...
- US Faces Tech Security Expert Deficit
- LAN Reconnaissance
- An Epilogue to Cryptography
- A Sequel to Cryptography
- An Introduction to Cryptography
- Security Overview
- Network Security Assessment
- Firewalls
- What’s behind the curtain? Part II

Developer Shed Affiliates

 


Dev Shed Tutorial Topics: