Products

Evoq Content Overview Content Creation Workflow Asset Management Mobile Responsive Personalization Content Analytics SEO Integrations Security Website PerformanceEvoq Engage Overview Community Management  Dashboard  Analytics  Member Profile Gamification Advocate Marketing Community Engagement  Ideas  Answers  Discussions  Groups  Wikis  Events Mobile ReadyDNN Support PackagesEvoq: CMS FeaturesEvoq OnDemandCompare DNN's CMS Products

Solutions

Content Management SystemMulti-Channel PublishingDigital MarketingOnline Community ManagementIntranet Software SolutionOur CustomersPrime

Resources

Test DrivesSchedule A DemoDocumentation CenterWebinarsWhite PapersProduct ManualsRequest PricingData SheetsCase StudiesEvoq Preferred Products Content Management Ecommerce Forms Identity Management and Authentication Site Management Social Themes

Partners

DNN Partners Partner Directory Become a DNN Partner Partner Program Overview  Hosting  Implementation  ISV  Training  Competencies

Community

Participate Ask a Question Forums Community Showcase DNN MVP  Program Overview  Lifetime MVPs  Honorary MVPs Subscribe to DNN Digest Advisory Groups  Awareness Advisory Group  Developer Advisory Group  Partner Advisory Group  Technology Advisory GroupLearn Documentation Wiki Community Blog Video Library Project History Development RoadmapDownload DNN Store Language Packs Manuals Nightly BuildsSecurity Policies Security Center

Blog

About

News Press Releases News Coverage Press KitCareersContact DNN

QA

Ideas Test

New Community Website

Ordinarily, you'd be at the right spot, but we've recently launched a brand new community website... For the community, by the community.

Yay... Take Me to the Community!

Welcome to the DNN Community Forums, your preferred source of online community support for all things related to DNN.
In order to participate you must be a registered DNNizen
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Site Hacked - Suggestions RequestedSite Hacked - Suggestions Requested
Previous
 
Next
New Post
6/15/2010 11:05 PM
 
dMb

Joined: 11/1/2006
Posts: 2
Hello.

I have a DNN installation that was hacked yesterday, with the intruder replacing my default.aspx file and causing all of the portals to fail.  I have replaced with bad default.aspx with the correct one but now need to make sure I get my installation secured and have some questions I was hoping to get answered here.

1. I have been running an older version 04.05.01.  I know this is a very old version and do plan to upgrade it to the latest 04.09.XX version (last one before the 05 releases).  I also realize after doing some searching that most likely the vulnerability mentioned here:
http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno24/tabid/1188/Default.aspx
was the cause.  My mea culpas for not having upgraded the install until now.  I am hoping to get this corrected now.  Am I correct in believing this is in fact the source of the compromise?

2. Should I have any problems upgrading from 04.05.01 to 04.09.01 without doing any intermediary upgrades?  Is there anything I need to look out for/make sure I do when upgrading?

3. According to my managed hosting administrators:
"Upon investigation of the Home Directory (D:\dnnInstall) we noted the following: 
The Group "dnnusers" has "Full Control" of the directory. 
The Internet Guest Account has "Full Control" of most of the files with the directory. "

Does the Internet Guest Account need "Full Control" of any of the files in the dnninstall folder?  
Should I make sure these permissions are removed?
4. is there anything else I need to check/change to make sure my dnn install is secure?

5. Unrelated to this but I have been wanting to know for a while..I have many portals on this install; is there a recommended max number of portals that any one install should have on it?

6. Any other suggestions/help would be appreciated.

Thank you in advance for all of your help.
 
New Post
6/16/2010 4:39 AM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212
  1. You should upgrade immediately, though you need to analyse the server log files, how the intruders got into the system - there might also be a weak ftp password or another software installed, which has flaws.
  2. You should upgrade via DNN 4.6.2, be aware that the first upgrade (4.5.1 > 4.6.2) only requires manual adoption of web.config. You may follow my upgrade check list: http://www.deutschnetnuke.de/AboutDotnetNuke/V3V4TippsTricks/Upgradedurchführen.aspx
  3. IIS guest needs read access only
  4. Upgrade all core and 3rd party modules as well
  5. People complained about installations with more than a few thousands of portals get slow - however, IMHO installations with more than about hundred sites become difficult to manage, the tools are not designed for it.
  6. Sure, just ask :)
Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
New Post
6/22/2010 1:48 AM
 
dMb

Joined: 11/1/2006
Posts: 2
Thank you so much for your feedback on my problem.

Unfortunately, as much as I tried to follow your directions I failed at upgrading our dnn install.  I tried running the upgrade but received errors without any indication of what the problem was.  I kept trying to figure out the problem and at one point got a message that upgrade occurred but only the database had been upgraded and the files had not.  When I tried to run a portal everything functioned except being able to login, with errors saying some modules did not load.

I am a bit up against the wall and could really use some expertise help. 

By coincidence, you have helped me before in the past with some installation issues.  I still have you on my MSN Messenger from then.  Would it be OK to contact you again for help?  If you could remotely connect to my server and assist me with the upgrades I need to perform it would be very much appreciated and I would gladly pay your via paypal for your time.
 
New Post
6/22/2010 5:27 AM
 
Sebastian Leupold


Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

Sebastian Leupold's Avatar

www.dnnwerk.de
Joined: 3/8/2004
Posts: 46212
sure, please feel free to contact me - but understand, that I will have to charge for remote support (even I need sth to eat ;)
Cheers from Germany,
Sebastian Leupold

dnnWerk - The DotNetNuke Experts   German Spoken DotNetNuke User Group

Speed up your DNN Websites with TurboDNN
 
 Page 1 of 1
Previous
 
Next
HomeHomeUsing DNN Platf...Using DNN Platf...Administration ...Administration ...Site Hacked - Suggestions RequestedSite Hacked - Suggestions Requested


These Forums are dedicated to discussion of DNN Platform and Evoq Solutions.

For the benefit of the community and to protect the integrity of the ecosystem, please observe the following posting guidelines:

  1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DNN.
  2. No vendor trolling / poaching. If someone posts about a vendor issue, allow the vendor or other customers to respond. Any post that looks like trolling / poaching will be removed.
  3. Discussion or promotion of DNN Platform product releases under a different brand name are strictly prohibited.
  4. No Flaming or Trolling.
  5. No Profanity, Racism, or Prejudice.
  6. Site Moderators have the final word on approving / removing a thread or post or comment.
  7. English language posting only, please.
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out
What is Liquid Content?
Find Out