Hacked because of 0666 permission
« on: May 15, 2007, 11:15:45 PM »

Since config.inc.php permissions is required  to be 0666, the hacker was able to inject an iframe hack into it, infecting the rest of my files.

When I set the permission to 644, my site is safe from any attacks but then I can't use the script. What is the solution for this?

Thank you all, please help me
Re: Hacked because of 0666 permission
« Reply #1 on: May 16, 2007, 06:02:49 PM »

you still can use Sitemap Generator with config file set to 0644. Write permissions are only required to save configuration during generator setup. Actually, it is suggested to change it back to 0644 when setup is completed.