PhotoPost Photo Gallery Sales PhotoPost Sales Toll Free Phone Number
Mon-Fri 9am-4pm EST
  PhotoPost Photo Sharing Photo Gallery    Visualize community tm
| | | | | | | | |

Go Back   PhotoPost Community > General Forums > General Discussion

General Discussion General use discussion forum for PhotoPost products.

Reply
 
Thread Tools Rate Thread Display Modes
Old September 21st, 2005, 11:31 PM   #1
SaN-DeeP
Member
Verified Customer
 
Join Date: Dec 2004
Location: techarena.in
Posts: 421
Exclamation possible hack ??

check the attachment please. saw this nasty activity of direct image downloading for almost 2 hours when i made a .hta entry and restricted entire gallery..

i am using latest version of photopost.
Attached Images
File Type: jpg hacked.jpg (89.4 KB, 19 views)
SaN-DeeP is offline   Reply With Quote
Old September 22nd, 2005, 12:54 AM   #2
SaN-DeeP
Member
Verified Customer
 
Join Date: Dec 2004
Location: techarena.in
Posts: 421
I have .htaaccess password protected my directories currently.
As soon as I am removing the passwords, the above downloads/intrusion gets started.
SaN-DeeP is offline   Reply With Quote
Old September 22nd, 2005, 04:07 AM   #3
SaN-DeeP
Member
Verified Customer
 
Join Date: Dec 2004
Location: techarena.in
Posts: 421
bumping back again.. its quite urgent guys
SaN-DeeP is offline   Reply With Quote
Old September 22nd, 2005, 07:35 AM   #4
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,244
There is no need to post 3 times in the AM hours within a 4.5 hour spread. When we wake up and drink our coffee we will respond

If you do not have htaccess that prevents access to those files sure people can view them directly. I dont think someone's hacking you but a spider viewing your files
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Old September 23rd, 2005, 03:54 AM   #5
SaN-DeeP
Member
Verified Customer
 
Join Date: Dec 2004
Location: techarena.in
Posts: 421
did you meant htaacess to data and uploads area ?
SaN-DeeP is offline   Reply With Quote
Old September 23rd, 2005, 05:48 AM   #6
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,244
Yes block hotlinking and the sorts but I dont think there is an issue with some on your site reading your files.
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Old September 23rd, 2005, 06:26 AM   #7
SaN-DeeP
Member
Verified Customer
 
Join Date: Dec 2004
Location: techarena.in
Posts: 421
alrite I am using this code posted here:

RewriteEngine on
RewriteCond %{HTTP_REFERER} !^http://([a-z0-9-]+\.)*techarena.in* [NC]
RewriteRule /* http://%{HTTP_HOST}/gallery/index.php [R,L]

But my gallery can be accessed 2 ways:
http://gallery.techarena.in and http://www.techarena.in/gallery/

Can you help change the above quries better way ?
Thanks again omegatron.

P.S. I removed the .htaccess password protection on my gallery, now again i see those nasty crawlers hogging around :/
SaN-DeeP is offline   Reply With Quote
Old September 23rd, 2005, 07:23 AM   #8
Chuck S
Photopost Developer
Verified Customer
 
Chuck S's Avatar
 
Join Date: Jun 2002
Location: Abingdon,MD
Posts: 75,244
ten million ways to do it

RewriteEngine on
RewriteCond %{HTTP_REFERER} !^$
RewriteCond %{HTTP_REFERER} !^http://(www\.)?reeftalk.com/.*$ [NC]
RewriteRule \.(gif|jpg|png)$ - [F]
__________________
Photopost Developer and Support Engineer

Please do not PM me for support or sales questions. Thank you for your understanding.
Chuck S is offline   Reply With Quote
Reply


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Display Modes Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -5. The time now is 10:16 PM.

Powered by vBulletin® Version 3.8.1
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.