Quote:
|
Originally Posted by Linkster
Can your host provide logs as to how the script initially got on your server? This sounds like something that a lot of WMs have been experiencing lately that seems to be connected to a compromised sponsors affiliates password file where some have used the same password for a sponsor as they use on their server (not smart but it has happened).
What I would be looking for is an initial PUT where the guy just used ftp to get in with no real hack attempts(already knew the pass)
|
I'm asking the host to provide logs. And also how many other sites on their server has got the same problem. Because it's not just me, they let me in on that much after they finally realised I wasn't having a whinge about nothing.
I don't use the same password. But as I said, it's across numerous sites across their server.