dv hacked on (mt) :(

Out of context: Reply #11

• Started
• Last post
• 15 Responses

• vaxorcist0

  SFTP not FTP! (secure FTP, not unsecured FTP)

  It's likely that somebody got your FTP login, either by some malware infected PC logging into the FTP (possibly your clients), and/or a "main-in-the-middle" attack which is waaay too easy with unsecured FTP

  Whenever I give an FTP login to a client, I ether show them how to use SFTP and/or restrict their login to only a few files.... as a LOT of PC's are infected with malware that results in many of your javascript files suddenly containing references to URLs in russia like "pantscow.ru"

  http://www.webhostingtalk.com/sh…

  vaxorcist 0Permalink

  UpvoteDownvote

  Flag

  • resist the urge to allow your FTP programs to save passwords, it's rather unsafe..vaxorcist
  • clients who have to use FTP almost always demand to save the passwords in their FTP program, this is unsafe!vaxorcist

  Show [[ numHiddenNotes ]] more notesAdd Note

  SaveCancel

View thread