Announcement

**leehack** · 16-Apr-2008, 10:28 PM

Something crazy is happening, either you have completely trashed the site or it has been attacked in some way. When i click a link on your site, it tries to take me to this forum. License a new site and start again and also wipe your server to get rid of any lurking junk. Snapshot regularly to protect yourself better and give a roll back facility. It looks too far gone (time wise to solve) to be corrected, start again IMO.

**jont** · 17-Apr-2008, 07:25 AM

Oh eh... I also get the redirect back to the forum

**leehack** · 17-Apr-2008, 08:01 AM

Must be some pasting of URLs or code gone astray i expect. This site is getting worse by the day, i think a new start is the only way forward now. Something very strange is occurring on it, at least i've never seen it before.

**TraceyHand** · 17-Apr-2008, 08:25 AM

Jont/Lee...you guys should both know better than to click on a cgi-bin link from a forum post

Try it from the originating url http://liassis.com

**leehack** · 17-Apr-2008, 08:31 AM

I didn't Bumpsy, links on the site I am talking about. The whole thing has gone now anyway, looks like it's been laid to rest, RIP.

**anthony_kudzin** · 17-Apr-2008, 11:45 AM

RE: SPAM on Actinic Site & Broken URL's

Hi,

This seems to be getting worse. When you say trashing / restoring the site, I'm not sure of what you are saying. Do I delete everything on the ISP side and reload from my PC ?

How can I be sure that it will stop any attack / repeat without understanding what is going on.

I checked all files again in my acatalog directory at my host site. No strange php files and everything is 644 / 755 or lower.

If I co to my site page http:/liassis.com the site displays. If I then select a link

http://liassis.com/cgi-bin/ss000002....th_vents.html&

I see this in the properties, so that looks good too.

As soon as you click it you see the URL change to

http://community.actinic.com/acatalo...ith_vents.html

something is obviously switching the site ?

How can I trace it ?

It was actually working fine last night. I do have a .tar.gz backup just after I checked it was all looking OK. Perhaps I might try and restore that, but I would like to understand how Actinic deals with pulling the page into the browser, as I think it will just kepp reappearing. I will also scan the PC for malware, but Norton is running on it in resident mode.

**anthony_kudzin** · 17-Apr-2008, 11:49 AM

BTW: I could not get the links to the related products working, but as soon as I removed one of the mini layouts from the side panel display all the links started working fine ? I was wondering if there was a bug in the layout I was using, conflicting with the Theme ?...maybe not give all these SPAM problems.

**cdicken** · 17-Apr-2008, 11:56 AM

Anthony - posting links to cgi scripts on the Community won't work I'm afraid as Actinic will think that http://community.actinic.com/ is the BaseHREF of your store. You need to delete the cart cookie to get your store working again correctly.

In future, post a link to an *.html page and then tell people where to click to see the problem. That's much safer.

**anthony_kudzin** · 17-Apr-2008, 03:52 PM

RE: Security fix

Thanks for the advice, I will try to do so in future.

I have a related post concerning security, that I will briefly mention here before looking in the other notes.

I've just received notification that 8.5.3 was released today and includes a bug fix for security.

Is the fix related to this problem or something else ?

**cdicken** · 18-Apr-2008, 09:16 AM

Is the fix related to this problem or something else ?

Something else. It's all to do with stopping these 'Security Metrics' page validators from flagging up errors in the cart code.

Announcement

Broken links on Related Products

Broken links on Related Products

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment