I have just discovered there is a trojan in one of our website. It runs on oscommerce 2.2 RC2a. was built last year and has not been updated since.
I have just done a search on the net and I have found reports of oscommerce sites being attacked and Trojans added. I am not sure whether to ditch the site completely and use some other ecommerce software or back up from my original files then try updating the site? Then try and lock it down with some of the security measures outlined on these forums.
My question is really if I upgrade am I going to be safe against further attacks and what is the best way to go about sorting my site out? If I upgrade which version is safe?
Latest News: (loading..)
0
2 replies to this topic
#2
-
- Community Sponsor
-
- 10,464 posts
- Real Name:Chris Dunn
- Gender:Male
- Location:Tecumseh, Ontario, Canada N8N 1X8
Posted 29 September 2011, 14:56
Julie,
If you clean and properly secure your current site, you will have a site that is equivalent to the security found in v2.3.1. If you choose to scrap the old site, use v2.3.1 to build another site. (v3.x is not production ready)
Chris
If you clean and properly secure your current site, you will have a site that is equivalent to the security found in v2.3.1. If you choose to scrap the old site, use v2.3.1 to build another site. (v3.x is not production ready)
Chris
:|: Was this post helpful ? Click the LIKE THIS button :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
:|: Click Here to learn how I can help you with custom coding, add ons, security and templates :|:
:|: Need an Area Calculator, Pre-Paid Account, Virtual Pin, Auction or Layaway Add on ? Click Here :|:
#3
Posted 29 September 2011, 17:12
Can I upgrade to 2.3.1 easily and keep the same data or do I really have to start from scratch?
Whats the best way of cleaning the data? I think I have a back up from when the site was first built for both the database and the web files, should I just try recopying this and reimporting the database? There are not many products so I can redo these if necessary?
Whats the best way of cleaning the data? I think I have a back up from when the site was first built for both the database and the web files, should I just try recopying this and reimporting the database? There are not many products so I can redo these if necessary?
