Security tips for an SMF install that is consistently trying to be hacked?

Started by Relaxasaurus, April 26, 2010, 11:15:26 PM

Previous topic - Next topic

Relaxasaurus

Long story short, we have continuous hacking attempts from Russian/Eastern Euro bloc IPs on our 2k+ member forum.  This happened after a spat where we had to ban many members at the same time, most if not all of which were Russian.  Now index.php?action=login2/register and security.php are consistently hit and show up in the logs.

I'm running RC3, which seems to have the latest security features, but is there anything else I can do, custom or otherwise, to enhance the security of my site?

Thanks

smp420

Your host can also ban the ip's from accessing your site. If you have cpanel you can do this yourself.
"Things turn out best for those who make the best of the way things turn out." -Jack Buck

Kill Em All

http://custom.simplemachines.org/mods/index.php?action=search;type=19

also see the link in my sig about protecting your forum.

If you have other scripts/software installed on your website, make sure they are up to date. Make sure your host is up to date with all their software to. Maybe your host is very vulnerable. Run a few AV scans on all of the admin's computers that have access to your site.
http://www.maximumpc.com/article/howtos/ultimate_malware_removal_guide_purge_your_pc_junk_files
http://www.maximumpc.com/article/howtos/how_root_out_stubborn_malware_hijackthis


My Site: KEAGaming.com

Manual Installation of Mods
Prevent Spam and Forum Attacks
Please do not PM or email me for support unless offered, help should be publicly displayed to others.

Advertisement: