Path: csiph.com!usenet.pasdenom.info!aioe.org!news.stack.nl!newsfeed.xs4all.nl!newsfeed5.news.xs4all.nl!xs4all!newsgate.cistron.nl!newsgate.news.xs4all.nl!post.news.xs4all.nl!not-for-mail Return-Path: X-Original-To: python-list@python.org Delivered-To: python-list@mail.python.org X-Spam-Status: OK 0.004 X-Spam-Evidence: '*H*': 0.99; '*S*': 0.00; 'example:': 0.03; 'hosts': 0.07; 'option,': 0.07; 'thats': 0.07; 'python': 0.09; 'coding,': 0.09; 'sep': 0.09; 'to:addr:comp.lang.python': 0.09; 'utilizing': 0.09; 'cc:addr:python-list': 0.10; 'template': 0.11; 'charset:iso-8859-7': 0.15; 'guess.': 0.16; 'there?': 0.16; 'too?': 0.16; 'wrote:': 0.17; 'fix': 0.17; 'script.': 0.17; 'code,': 0.18; 'supposed': 0.21; 'cc:2**0': 0.23; 'example': 0.23; 'work.': 0.23; 'insert': 0.23; 'cc:no real name:2**0': 0.24; 'script': 0.24; 'cc:addr:python.org': 0.25; 'header:In-Reply- To:1': 0.25; 'header:User-Agent:1': 0.26; 'wrote': 0.26; 'am,': 0.27; 'guess': 0.27; 'options': 0.27; "doesn't": 0.28; 'chris': 0.28; 'post': 0.28; 'search.': 0.29; 'though.': 0.29; 'usually': 0.30; 'code': 0.31; 'info': 0.32; 'received:google.com': 0.34; 'received:209.85': 0.35; 'there': 0.35; 'but': 0.36; 'subject:Please': 0.36; "i'll": 0.36; 'possible': 0.37; 'received:209': 0.37; 'far': 0.37; 'subject:: ': 0.38; 'easier': 0.38; 'some': 0.38; 'page': 0.38; 'instead': 0.39; 'called': 0.39; 'end': 0.40; 'your': 0.60; 'further': 0.61; 'dedicated': 0.61; "you'll": 0.62; 'assistance': 0.63; 'subject:One': 0.65; 'subject:. ': 0.66; 'cms': 0.66; 'url:wordpress': 0.75; 'yourself,': 0.75; "else's": 0.84; 'url:show': 0.84; 'visitors.': 0.91; 'joomla': 0.93 Newsgroups: comp.lang.python Date: Sat, 22 Sep 2012 11:13:49 -0700 (PDT) In-Reply-To: Complaints-To: groups-abuse@google.com Injection-Info: glegroupsg2000goo.googlegroups.com; posting-host=94.68.84.200; posting-account=DYJQ-woAAACEPH85Au2BhUVfFTfSfVa4 References: <079f4b21-93f4-450b-9112-21b2faa19ed3@googlegroups.com> <505db890$0$29981$c3e8da3$5496439d@news.astraweb.com> User-Agent: G2/1.0 X-Google-Web-Client: true X-Google-IP: 94.68.84.200 MIME-Version: 1.0 Subject: Re: One of my joomla webpages has been hacked. Please help. From: =?ISO-8859-7?B?zd/q7/Igw+rx5eXq?= To: comp.lang.python@googlegroups.com Content-Type: text/plain; charset=ISO-8859-7 Content-Transfer-Encoding: quoted-printable Cc: python-list@python.org X-BeenThere: python-list@python.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: General discussion list for the Python programming language List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Message-ID: Lines: 73 NNTP-Posting-Host: 2001:888:2000:d::a6 X-Trace: 1348337633 news.xs4all.nl 6852 [2001:888:2000:d::a6]:47840 X-Complaints-To: abuse@xs4all.nl Xref: csiph.com comp.lang.python:29761 =D4=E7 =D3=DC=E2=E2=E1=F4=EF, 22 =D3=E5=F0=F4=E5=EC=E2=F1=DF=EF=F5 2012 5:5= 7:41 =EC.=EC. UTC+3, =EF =F7=F1=DE=F3=F4=E7=F2 Chris Angelico =DD=E3=F1=E1= =F8=E5: > On Sun, Sep 23, 2012 at 12:44 AM, =CD=DF=EA=EF=F2 =C3=EA=F1=E5=E5=EA wrote: >=20 > > But how am i supposed to fix this vulnerability if i don't know which o= ne is it? >=20 > > >=20 > > My guess is they used joomlas template to insert arbitrary code but tha= ts just a guess. >=20 >=20 >=20 > The answer to that is a thing called "research", and you'll usually >=20 > find a lot of it at the other end of a web search. Also, you may want >=20 > to look into what it means to be a web site administrator. It doesn't >=20 > simply involve throwing down some code that someone else wrote and >=20 > expecting it to work. >=20 >=20 >=20 > If you want a web site without having to manage it yourself, consider >=20 > a blog instead - someone else hosts it and worries about security, and >=20 > you just post your content to it. It's a far FAR easier option, as >=20 > long as what you want can be shoehorned into someone else's layout >=20 > design. >=20 >=20 >=20 > Neither of these options involves any Python coding, so if you want >=20 > further assistance with them, I recommend looking for a forum >=20 > dedicated to the technology you use. >=20 >=20 >=20 > ChrisA Okey i'll ask this to the officila joomla forum, one last thing though. Is there a way to somehow embed(or utilize) python code, for example my pyt= hon counter code script you have seen last week inside my Joomla/WordPress = cms sites? For example: http://superhost.gr/ is my main website utilizing python counter script. http://superhost.gr/html/?show=3Dlog is my own way(i prefer it over awstats= - don't ask why) for viewing my visitors. in my other sites which are CMS sites, like http://varsa.gr and http://thessalonik.wordpress.com/ is there a possible way to embed(if thats the term) my python counter scrip= t there too? so i can keep track of visitors info for each page i have there?