Re: Hacking of JavaScript files in our corporate website


Perl: the Markov chain saw
	PerlMonks

Re: Hacking of JavaScript files in our corporate website

by flexvault (Vicar)

on Dec 16, 2012 at 14:53 UTC ( #1009072=note: print w/ replies, xml )

Need Help??

in reply to Hacking of JavaScript files in our corporate website

shajiindia,

IMHO, you should be doing something to fix the problem;

Why are you letting someone modify your live web-site?

Check the logs, close the exposure holes, etc. Then fix the code and don't let it happen again.

I've been hacked, and it isn't fun, but I fixed the source of the problem.

First, all of your JavaScript files should be read-only. Look at everything, since there may be other compromised files.

To answer your question, a very simple Perl script run every hour could check the modified JS to a checksum and if it fails to verify, then notify the sysadmin. But if the site is that un-secure, then maybe *they* could modify your Perl script!

Good Luck...Ed

"Well done is better than well said." - Benjamin Franklin

Comment on Re: Hacking of JavaScript files in our corporate website
Re^2: Hacking of JavaScript files in our corporate website by shajiindia (Acolyte) on Dec 17, 2012 at 09:11 UTC
Thanks for your help.	[reply]

In Section Seekers of Perl Wisdom

Node Status^?

node history
Node Type: note [id://1009072]
help

Chatterbox^?

How do I use this? | Other CB clients

Other Users^?

Others surveying the Monastery: (10)

As of 2013-06-18 07:54 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Voting Booth^?

How many continents have you visited?

Results (601 votes), past polls