We launched new forums in March 2019—join us there. In a hurry for help with your website? Get Help Now!
MODX Community Forums Archive

help! site was hacked, need to upgrade, not sure to what version....

    • 9700
    • 7 Posts
    finnaster Reply #1, 13 years, 5 months ago
    OK, I’m running .9.6 (at least, that’s what it says -- I inherited this site). We just had a major incident which my server folks tell me was probably due to a vulnerability in my MODX installation. My bad for not upgrading, I know, but the site was working well and my client frowned on any downtime so I kept putting it off. Well, now they’re frowning even harder on the idea that this could happen again.

    So, time to upgrade.

    I see that to leap to Revolution from .9.6 is currently recommended only for "brave souls." shocked
    What would be recommended for timid souls? grin

    I’ve got php 5.1.6.3, mysql 5.0.82 running on an apache server, centos 5

    My site is not big but it is mission critical right now. I am not a MODX expert or a developer really at all, although I have a developer to help (he doesn’t have much modx experience either). Could you suggest the best upgrade solution for us now?
    Thanks!!!!
      • 10449
      • 956 Posts
      ganeshXL Reply #2, 13 years, 5 months ago
      There are various reasons why a site could be hacked. It’s not necessarily the software (CMS / script) itself, it could be also the hosting company’s weak overall server settings (at the Apache level already, and then again at PHP / mySQL level). A few infos about what exactly has happened would have been helpful.

      I’d recommend to first of all backup everything, then upgrade to the latest Evo version (1.0.4. afaik).

      After you’ve done that, it would be advisable to read up on vulnerabilities / possible hacks / injection attacks etc. in the forums. e.g. there was a search highlight plugin (or snippet) that was easily hackable (but then again - also easy to fix). Another well-known problem was a Ditto Reflect bug (fixed a long time ago). As a general rule of thumb: disable everything you don’t use / need, i.e. every snippet or plugin or module should be disabled rightaway.

      If you encounter the same kinds of problems again with a fresh MODx upgrade, I’d recommend moving to another host.
        http://www.fantastique.ch/
        http://www.dnik.ch/
        http://www.flickr.com/photos/dnik/
        • 9700
        • 7 Posts
        finnaster Reply #3, 13 years, 5 months ago
        well, it was a php/script injection issue....
        anyway, latest Evo, ok, sounds good

        Sounds reasonable re:disabling the things we don’t need, thanks!

        And, yes, I will keep up to date on security issues on the forum from now on!!!
          • 20413
          • 2,877 Posts
          mrhaw Reply #4, 13 years, 5 months ago
          For upgrading and securing your site maybe these links will be helpful: http://4up2date.info/modx.html
            @hawproductions | http://mrhaw.com/

            Infograph: MODX Advanced Install in 7 steps:
            http://forums.modx.com/thread/96954/infograph-modx-advanced-install-in-7-steps

            Recap: Portland, OR (PDX) MODX CMS Meetup, Oct 6, 2015. US Bancorp Tower
            http://mrhaw.com/modx_portland_oregon_pdx_modx_cms_meetup_oct_2015_us_bancorp_tower