We got hacked a few weeks ago due to a vulnerability in the WYSIJA (Mail-Poet) plugin for Wordpress, which allowed a file to be uploaded and executed, resulting in ALL our PHP files being infected with an encrypted script at the beginning of them.
Usually on a Unix/Linux based system I would use Permissions to block core files from being updated by anyone other than an Administrator, but on the iSeries everything is done using user profiles instead.
I wondered if there is a recommended way to define IFS directory authorities to help prevent this from happening again, since the Apache error logs show that bots are "banging on the door" every day, trying to find a weak point.
Usually on a Unix/Linux based system I would use Permissions to block core files from being updated by anyone other than an Administrator, but on the iSeries everything is done using user profiles instead.
I wondered if there is a recommended way to define IFS directory authorities to help prevent this from happening again, since the Apache error logs show that bots are "banging on the door" every day, trying to find a weak point.
Comment