The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

My server is hacket??

Discussion in 'General Discussion' started by emeric21, Jun 7, 2003.

  1. emeric21

    emeric21 Well-Known Member

    Joined:
    Aug 5, 2002
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    I think someone hacked my server!!

    I used this command: find / -iname '*.php' -exec chmod 755 \[\} \; that i find here: http://forums.cpanel.net/showthread.php?s=&threadid=8485&highlight=phpsuexec
    but i receved this from SSH:
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    chmod: getting attributes of `[}': No such file or directory
    etc.....

    But now i cannot see any websites on my servers!!!
    Example:
    Imperialregistrar.com,

    Internal Server Error
    The server encountered an internal error or misconfiguration and was unable to complete your request.
    Please contact the server administrator, webmaster@imperialregistrar.com and inform them of the time the error occurred, and anything you might have done that may have caused the error.

    More information about this error may be available in the server error log.


    Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request.

    cPanel.net Support Ticket Number:
     
  2. emeric21

    emeric21 Well-Known Member

    Joined:
    Aug 5, 2002
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    and i receved a email from my customer, he said that a hacker say to him that our apache is not secure and he can see that from our server!!
    root:x:0:0:root:/root:/bin/bash
    bin:x:1:1:bin:/bin:/sbin/nologin
    daemon:x:2:2:daemon:/sbin:/sbin/nologin
    adm:x:3:4:adm:/var/adm:/sbin/nologin
    lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
    sync:x:5:0:sync:/sbin:/bin/sync

    cPanel.net Support Ticket Number:
     
  3. rbmatt

    rbmatt Well-Known Member

    Joined:
    Oct 21, 2002
    Messages:
    212
    Likes Received:
    0
    Trophy Points:
    16
    Anyone not in jailshell can do a "cat /etc/passwd" and get that info.

    cPanel.net Support Ticket Number:
     
  4. infinityws

    infinityws Well-Known Member

    Joined:
    Feb 20, 2003
    Messages:
    110
    Likes Received:
    0
    Trophy Points:
    16
    Examine your log files

    or examine the directory of that client. Its possible they ruined the site themselves.

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page