XFileSharing Pro - hacking attempts

Message
Author
peterdays
Posts: 55
Joined: Mar 10, 2010 3:56 pm

hacking attempts

#1 Postby peterdays » Mar 31, 2010 8:54 pm

i got a user uploading diferent files, php, etc with all sorts of code to try and get access to the server, should i be worried, i guess a lot of you have been targeted...

komi
Posts: 161
Joined: Nov 27, 2009 12:41 pm

#2 Postby komi » Apr 01, 2010 8:01 am

If you're using the default .htaccess in /files, you shouldn't be worried. It removes execution of scripts, thus you're perfectly save.

User avatar
PilgrimX182
Posts: 2186
Joined: Mar 22, 2006 1:39 pm

#3 Postby PilgrimX182 » Apr 02, 2010 9:15 am

Just go and try to download these PHP files.
.htaccess should prevent them from execution but not guarantees for your exact fileserver.

Just add .php to restricted extensions in Site Settings.

venture89
Posts: 95
Joined: Aug 30, 2011 12:11 am

#4 Postby venture89 » Sep 06, 2011 7:07 am

PilgrimX182 wrote:Just go and try to download these PHP files.
.htaccess should prevent them from execution but not guarantees for your exact fileserver.

Just add .php to restricted extensions in Site Settings.
Thanks for the reply. Should we also be worried about .exe files? Thanks

glumbo
Posts: 211
Joined: Mar 11, 2011 6:26 am

#5 Postby glumbo » Sep 06, 2011 7:17 am

.exe is no problem

venture89
Posts: 95
Joined: Aug 30, 2011 12:11 am

#6 Postby venture89 » Sep 06, 2011 7:17 am

glumbo wrote:.exe is no problem
Thank you!