elysed Posted February 17, 2012 Share Posted February 17, 2012 Will a purchase of a Mcafee, or any of the Hacker Safe / Malware seals, help secure my WHMCS from being vulverable? *Im looking for ways to keep it safe, *I have blocked IP addresses and changes my passwords quite frequently, and upgraded third party software. *What other software or things I can do. *Seems like there is still a hole somewhere where they can get in still.* 0 Quote Link to comment Share on other sites More sharing options...
tripler Posted February 17, 2012 Share Posted February 17, 2012 (edited) Its good your asking these questions. It will not, you need too keep whmcs up to date and/or apply security patches when/if released for your version. Aside from that its not just malware its also vulnerabilities and etc. I suggest consulting with a server security type person or having a good dev on retainer. The "this site has been checked for blah" type seals and crap are just scammy Even with good security, development etc something will always go wrong eventually so make sure you back up! Edited February 17, 2012 by tripler 0 Quote Link to comment Share on other sites More sharing options...
elysed Posted February 17, 2012 Author Share Posted February 17, 2012 Luckily I have automated backup for my WHMCS, but i did download the latest upgrade last week. Do you suggest deleting the files on the server with a fresh install? 0 Quote Link to comment Share on other sites More sharing options...
tripler Posted February 17, 2012 Share Posted February 17, 2012 For that security update? I would just replace that 1 file with the old one, unless you suspect that someone tried to hack your site. Do you suspect your site got hacked? 0 Quote Link to comment Share on other sites More sharing options...
elysed Posted February 17, 2012 Author Share Posted February 17, 2012 I think something is in the middle of happening, I tried to login my WHMCS and couldnt, I then went to my PhpMyAdmin and indeed the password has changed to something I have not set it to. So i changed it to a new one, and hoping when my IP Ban lifts from my login attempts I can get back in. 0 Quote Link to comment Share on other sites More sharing options...
tripler Posted February 17, 2012 Share Posted February 17, 2012 Grab a new password for your WHM, go into cpanel and check the FTP users and see if someone has crated an account. replace that security file. Scan through http://forum.whmcs.com/showthread.php?t=44066 Delete any new users in whmcs that dont look legit Once patched you still need to see if any executable code or anything is sittign around, check the database for things being off, check ftp accounts etc. Even though its patched you may still see activity or even get unreadable mail with exploit attempts but you should be safe. 0 Quote Link to comment Share on other sites More sharing options...
tripler Posted February 17, 2012 Share Posted February 17, 2012 If you can still get into cpanel then ban their ip. Contact your provider security dept asap 0 Quote Link to comment Share on other sites More sharing options...
elysed Posted February 17, 2012 Author Share Posted February 17, 2012 Thanks, ill do that now 0 Quote Link to comment Share on other sites More sharing options...
elysed Posted February 17, 2012 Author Share Posted February 17, 2012 Do you know anything about http://www.tripwire.com/, or anything I can install to do an automonitor that will delete things as they come in? 0 Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.