• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

What is the problem? We are hacked after upgrade..

E

em1ncan

Guest
Hi to all plesk users..
I upgraded from plesk 7.6 reloaded for windows to plesk 8.1 3 days ago.. And since then my sites were hacked 2 times.. Some people are accessing to the httpdocs and deleting them. I know they dont have any admin pass because they cant do anything except deleting the httpdocs index and moving files to another directory.. I couldn't find the problem? Do I need to set any permissions manually? All the permissions are made by plesk install automatically. I didn't set any manual permission to any file.. Pls help me! The people who hacked me told me that there is a bug in plesk so he can access my files.. But he didnt tell what is it esactly and how i can correct that.. I and my server really feel unsecure.. Pls help me soon!

thanks anyway..
 
I saw this problem before. It was caused by wrong file permissions (psacln had full control over %plesk_vhosts% and all files and folders within) so the hacker just replaced the index files on all folders recursively.

I recommend checking the file permissions manually and if you find any major problems, reset them using the Plesk reconfigurator.

You can find the default permissions on a domain folder at ftp://download1.swsoft.com/Plesk/Plesk8.1/Windows/Docs/plesk-8.1-win-reconfigurator-guide/7167.htm but I recommend going through the entire Plesk reconfigurator documentation at ftp://download1.swsoft.com/Plesk/Plesk8.1/Windows/Docs/plesk-8.1-win-reconfigurator-guide.pdf

Please let us know if you figure out this problem.
 
Originally posted by Bogdan
I saw this problem before. It was caused by wrong file permissions (psacln had full control over %plesk_vhosts% and all files and folders within) so the hacker just replaced the index files on all folders recursively.
Click to expand...
Plesk 8.1 for Windows allow only "Read Attributes" and "This folder only" over %plesk_vhosts%
 
You are right sergius, the problem I had was a while ago, with Plesk 7.0 and the wrong permissions were caused by human error not by Plesk. In any case, if this is the same problem, I think that running the Plesk configurator shoudl fix things.
 
i didnt set any manual access setting for any directory.. Its what did plesk install do.. but i didnt directly upgrade. First i backed up my sites from 7.6 and uninstalled old plesk. Then i installed new plesk 8.1 and restored the old back up data.. Sites worked fine. Is my problem happened because of that? REstoring old backup to new plesk? I will uninstall and reinstall my plesk now.. I hope it will be secure after that install..
 
will it be unsecure if i enable parent paths? because some of my sites are using parent paths... Can people access others file if i enable parent paths?
 
You must log in or register to reply here.

Similar threads

N
Issue I got Hacked and files permissions keeps on changing
Replies
0
Views
585
Nehodev
N
Polli
Resolved Server only reachable in recovery-mode after upgrade
Replies
2
Views
423
Polli
Polli
M
Resolved Domain Not Resolving After Recreation in Plesk
Replies
4
Views
473
MartMlr
M
CobraArbok
Question What kind of script for FTP and where to save the file.
Replies
0
Views
415
CobraArbok
CobraArbok
E
Issue Domain view crashes after upgrading to 18.0.57 (domain_aliasses table)
Replies
8
Views
1K
Peter Debik
P
Back
Top