Security question - php/mysql - hack
Posted on 2011-09-22
A chinese company has been trying to hack our site. I have recorded all activity and would appreciate advice to ensure our security integrity is maintained.
They are trying to run the following scripts (this is just a sample, there are lots more they are trying to run).
They started off with
then tried lots of others including
Any ideas exactly what they are after, and the best way to protect ourselves.
We just want to get on with business and it's really frustrating having to deal with idiots like this.
We don't have anything in there of value, it's just a nuisance and costs time.
I would appreciate advice from people who are really strong in security (ideally reformed hackers). It seems they are after database and trying to setup
I am just wanting to make sure we are as best protected as possible. We have non standard naming conventions for files and path, use form validation, etc.
I am particularly interested what motivates these people and what I can do to prevent them getting access.