Database being attacked?????

TimTimTimma

Ok, I have been developing my CMS for QUITE some time now, but in the 2 monthsd I have been working on it the database has been deleted, not just wiped, but completely deleted. My question is, is there a solid way I can for sure figure out if it is an external source thats attacking the database through my CMS I am developing? So that I may fix the issue? If so, is there also a way I can figure out WHO this is?? logging of sme sort maybe in the logfiles or something? Any suggestive ideas are appreciated!

Also if you would like to take a shot and try to find out if u can delete the database urself or if it actually is being done through/with the CMS check out http://timtimtimma.com

drew010

I'd first recommend scanning your log files very closely to check out certain url's that have been visited. Someone may be exploiting it via the query string.
So far its my only suggesstion, but I'd also recommend you change all your passwords because someone may have discovered them through the site.

halojoy

Originally posted by drew010
I'd first recommend scanning your log files very closely to check out certain url's that have been visited. Someone may be exploiting it via the query string.
So far its my only suggesstion, but I'd also recommend you change all your passwords because someone may have discovered them through the site.

Have you access to apache logfiles?

I tell you, timtimtimma
any page you load at my server, is recorded along with your IP
in my apache access.log

Try this link:
SECURE Page Protection by halojoy
and
PM Secure System by halojoy

and I promise you timtimtimma:
I will tell you in what second of a time
you requested what page, what image or what file
from my server
along with YOUR IP and other informations

:p :p