Thread: Sponsors! check your member email DB, you prolly are hacked.
View Single Post
Old 06-21-2010, 06:00 PM  
gleem
Confirmed User
 
gleem's Avatar
 
Industry Role:
Join Date: Jun 2001
Location: Sunny Land
Posts: 5,593
Quote:
Originally Posted by TeenCat View Post
- log all activity in admin areas on your server, get reports when unknown things happens
- do not send password through emails, do not store emails with passwords
- put your own testing real looking combos in htpasswd so you can track the hacks easily
- have all logins with captcha, not only popup 401 window

maybe sounds easy and basic, but those are things how smart kid can take your datas even without knowing any programming language
The password trading is of less concern than the emails, gonna have to figure out how to store emails somewhere off the nats DB.
__________________




Contact me: \\// E: webmaster /at/ unprofessional.com
gleem is offline   Share thread on Digg Share thread on Twitter Share thread on Reddit Share thread on Facebook Reply With Quote