Jump to content

Archived

This topic is now archived and is closed to further replies.

kvadre

Strange url in who is online

Recommended Posts

Hi

 

Today when I checed who is online a visitor came up with the following url: //#phpmyadmin_2.9.11/

I tried google but that didn't give me much, anyone here?

 

/Jesper

Share this post


Link to post
Share on other sites

Jesper,

 

It is more than likely a hacker bot looking for vulnerabilities in your website. There is no need to worry if you have a properly configured v2.3.1 store.

 

 

 

 

Chris


:|: Was this post helpful ? Click the LIKE THIS button :|:

 

See my Profile to learn more about add ons, templates, support plans and custom coding (click here)

Share this post


Link to post
Share on other sites

Hi

 

Today when I checed who is online a visitor came up with the following url: //#phpmyadmin_2.9.11/

I tried google but that didn't give me much, anyone here?

 

/Jesper

It's a hacker trying to get into phpmyadmin, which is a program used to access the database. If you have that installed in your shop, then you could have a problem since that has nothing to do with oscommerce. You need to verify it is not installed and, if it is, remove it. Or, if you have to have due to your host not having it, then move it to the admin directory.

Share this post


Link to post
Share on other sites

Hi

 

Thanks for the answers. I use phpmyadmin through my hosts website to maintain the db, but nothing is installed on my shop so i', guessing everything is ok.

 

/Jesper

Share this post


Link to post
Share on other sites

Hackers do try to check gates to crash into your site.

 

PhpMyAdmin is one of those that they try.

 

 

Satish


Ask/Skype for Free osCommerce value addon/SEO suggestion tips for your site.

 

Check My About US For who am I and what My company does.

Share this post


Link to post
Share on other sites

If your webhost has installed phpmyadmin without your websites public directory then change to another webhosting company.


- Stop Oscommerce hacks dead in their tracks with osC_Sec (see discussion here)
- Another discussion about infected files ::here::
- A discussion on file permissions ::here::
- Site hacked? Should you upgrade or not, some thoughts ::here::
- Fix the admin login bypass exploit here
- Pareto Security: New security addon I am developing, a remake of osC_Sec in PHP 5 with a number of fixes
- BTC:1LHiMXedmtyq4wcYLedk9i9gkk8A8Hk7qX

Share this post


Link to post
Share on other sites

Hi Taipo

 

I'm not quite sure I understand what you write, the whole directory talk on webhosting is unknown to me.

 

Would you mind explaining what you mean, i'm always interested in learning new thing.

 

/Jesper

Share this post


Link to post
Share on other sites

If the company you have your website hosted with has placed the phpMyAdmin directory within the public_html directory then that is a sign that they are amateurs with no concern for security therefore an indicator that it might be best that you look for another place to host your site. Its just an opinion of mine when it comes to webserver security. A mistake like that is an indicator that there are probably other security issues that they have overlooked.

 

However as you were saying above, the phpMyAdmin directory is not in your websites public directory/folder so therefore not a concern.

 

 

phpMyAdmin is a very powerful database editing tool and really has no place in the publicly accessible directories even with user authentication protecting it.


- Stop Oscommerce hacks dead in their tracks with osC_Sec (see discussion here)
- Another discussion about infected files ::here::
- A discussion on file permissions ::here::
- Site hacked? Should you upgrade or not, some thoughts ::here::
- Fix the admin login bypass exploit here
- Pareto Security: New security addon I am developing, a remake of osC_Sec in PHP 5 with a number of fixes
- BTC:1LHiMXedmtyq4wcYLedk9i9gkk8A8Hk7qX

Share this post


Link to post
Share on other sites

Some times developers or site owners do upload PhpMyAdmin and hackers just try to make out if that exist as a gateway to enter your site.

 

Satish


Ask/Skype for Free osCommerce value addon/SEO suggestion tips for your site.

 

Check My About US For who am I and what My company does.

Share this post


Link to post
Share on other sites

It's a hacker trying to get into phpmyadmin, which is a program used to access the database. If you have that installed in your shop, then you could have a problem since that has nothing to do with oscommerce. You need to verify it is not installed and, if it is, remove it. Or, if you have to have due to your host not having it, then move it to the admin directory.

 

Hi Jack, do you mind sharing how to verify if that program is installed in the database please? I am a new learner here. Thanks!! :)

Share this post


Link to post
Share on other sites

Hi Jack, please ignore my previous post. I saw your latest contribution "SiteMonitor" has stated the add-on for a check for common database hacking. I will install this contribution first and see. Thanks!

Share this post


Link to post
Share on other sites

What (I think) he was saying is that phpMyAdmin should not be accessible via the Web, but only through the hosting control panel (e.g., cPanel). If it can be accessed via the Web (is in public_html), that's very bad news, as a hacker will try to find a way into it. Once they're in, they have complete control over your database! If it has to be Web-accessible, make sure it is behind closed doors (a directory with password protection, at the very least).

Share this post


Link to post
Share on other sites

×