Come together with the global Drupal community in Rotterdam, 28 Sept – 1 Oct 2026. Sessions, contribution, connection, and Early Bird savings until 8 June.
By mediamike on
Hello,
I am looking for someone who has experience with drupal security. My website www.christian-faith.com was hacked twice by spammers, who deleted the database, still trying to reupload it. If you can help, please contact me on marilenafackerell@gmail.com or here.
Thanks.
Marilena
Comments
Just adding a few
Just adding a few suggestions / questions that I thought might help..
Which version of drupal are you running? 5.2 fixes a number of bugs and security holes so if your not running that then that may be your issue.
Do any other scripts use your same mysql database as your drupal install? the security hole could exist in one of them instead..
Is your database login password 'simple' or guessable? Either way you should probably change it when upgrading in case someone has already discovered it.
Other things to check would be whether theres any way users are able to upload php files, whether 'php' has been enabled as an input format and what the permissions to your drupal configuration file is.
If you would prefer to discuss this privately, feel free to contact me.
---
http://www.irrow.com/