+ All Categories
Home > Technology > anatomy of a crash

anatomy of a crash

Date post: 24-May-2015
Category:

Technology
Upload: valerie-forrestal
View: 98 times
Download: 0 times
Download Report this document
Share this document with a friend
Description:
detailing a website crash after hacking. how to secure your site against security vulnerabilities. how to recover after a crash/hacking.
Popular Tags:
secure site
site root
common hacks http
simple backup site ready
software uptodate
cms software
best practices
valerie forrestal code4libnyc
14
valerie forrestal code4libNYC 2013.10.08 the anatomy of a crash
Transcript
Page 1: anatomy of a crash

valerie forrestal

code4libNYC

2013.10.08

the anatomy of a crash

Page 2: anatomy of a crash

aw, hell. that‘s not supposed to do that.

Page 3: anatomy of a crash

step 1: check your main index file

turkish escorts, anyone?

Page 4: anatomy of a crash

why would someone hack a library website?

(it‘s not personal)

Page 5: anatomy of a crash

step 2: send out an email

i‘m serious. this is a step. because you will get about a thousand emails and phone calls telling you the site is down.

Page 6: anatomy of a crash

step 3: put up a temp homepage

Page 7: anatomy of a crash

i used a free css template, but you canuse a framework if you’re feeling fancy

• html5boilerplate: http://html5boilerplate.com/

• bootstrap: http://getbootstrap.com/

• foundation: http://foundation.zurb.com/

http://html5boilerplate.com/
http://getbootstrap.com/
http://foundation.zurb.com/
Page 8: anatomy of a crash

step 4: check server logs

• replace any files that were recently changed (not by you) with backups

• the internet tells me this will find files edited in the past 2 days:

find . -mtime -2 -type f

Page 9: anatomy of a crash

step 5: do a clean install

• if none of the above fixes work, you’re probably going to need to reinstall your cms software

• this is a problem if you’ve made a mess of your file structure and have undocumented customizations, so, in the future…

Page 10: anatomy of a crash

be prepared!

• set up your site so that you are able to restore it from scratch with the newest version of the software. don’t get tied to a particular version!

• some best practices…

Page 11: anatomy of a crash

best practices?

• always keep your software up-to-date• keep your customizations modular• keep your site root organized and your

subdirectories clean• have clear documentation on how to

restore the site from scratch• back up your backups• minimize your use of plugins• have a simple backup site ready to go

Page 12: anatomy of a crash

versioning

Page 13: anatomy of a crash

more tips

• google “secure … site” and “common … hacks”

• http://www.marcofolio.net/joomla/7_tips_to_optimize_joomla_security.html

• http://arstechnica.com/security/2013/02/securing-your-website-a-tough-job-but-someones-got-to-do-it/

• Open Web Application Security Project (OWASP): https://www.owasp.org/

http://www.marcofolio.net/joomla/7_tips_to_optimize_joomla_security.html
http://www.marcofolio.net/joomla/7_tips_to_optimize_joomla_security.html
http://arstechnica.com/security/2013/02/securing-your-website-a-tough-job-but-someones-got-to-do-it/
http://arstechnica.com/security/2013/02/securing-your-website-a-tough-job-but-someones-got-to-do-it/
http://arstechnica.com/security/2013/02/securing-your-website-a-tough-job-but-someones-got-to-do-it/
https://www.owasp.org/
Page 14: anatomy of a crash

contact

valerie forrestalweb services librariancollege of staten island/CUNY• [email protected]• vforrestal.com• @vforrestal• slides available at:

slideshare.net/vforrestal

mailto:[email protected]
http://vforrestal.com/
http://twitter.com/vforrestal
http://twitter.com/vforrestal
http://www.slideshare.net/vforrestal
http://www.slideshare.net/vforrestal

Recommended
A crash course

A crash course

Documents

DIY NATURAL Crash Course CLEANING Crash CourseDIY NATURAL · 2 DIY NATURAL CLEANING Crash Course DIY NATURAL CLEANING Crash Course That one decision resulted in a total lifestyle

DIY NATURAL Crash Course CLEANING Crash CourseDIY NATURAL · 2 DIY NATURAL CLEANING Crash Course DIY NATURAL CLEANING Crash Course That one decision resulted in a total lifestyle

Documents

A Crash Course in R - Department of Mathematical and …math.ucdenver.edu/~ssantori/SWIPfiles/A Crash Cours… ·  · 2012-06-12A Crash Course in R A Crash Course in R 1 1 Introduction

A Crash Course in R - Department of Mathematical and …math.ucdenver.edu/~ssantori/SWIPfiles/A Crash Cours… ·  · 2012-06-12A Crash Course in R A Crash Course in R 1 1 Introduction

Documents

Crash Crash Worthiness Auc03 Bmw

Crash Crash Worthiness Auc03 Bmw

Documents

Anatomy of a crash

Anatomy of a crash

Documents

The Anatomy and Analysis of a Typical Pedestrian / Bicycle ... · The Anatomy and Analysis of a Typical Pedestrian / Bicycle Crash Event Mike W. Reade, CD Forensic Reconstruction

The Anatomy and Analysis of a Typical Pedestrian / Bicycle ... · The Anatomy and Analysis of a Typical Pedestrian / Bicycle Crash Event Mike W. Reade, CD Forensic Reconstruction

Documents

JavaScript: A Crash Course

JavaScript: A Crash Course

Documents

Language crash course crash course A means of communication.

Language crash course crash course A means of communication.

Documents

CRASH TEST USING A CAR WITH AUTOMATIC PRE-CRASH BRAKINGbast.opus.hbz-nrw.de/volltexte/2013/681/pdf/28_Berg.pdf · CRASH TEST USING A CAR WITH AUTOMATIC PRE-CRASH BRAKING A Berg*,

CRASH TEST USING A CAR WITH AUTOMATIC PRE-CRASH BRAKINGbast.opus.hbz-nrw.de/volltexte/2013/681/pdf/28_Berg.pdf · CRASH TEST USING A CAR WITH AUTOMATIC PRE-CRASH BRAKING A Berg*,

Documents

Pre-Crash Scenario Typology for Crash Avoidance Research · This report defines a new pre-crash scenario typology for crash avoidance research based on the 2004 General Estimates

Pre-Crash Scenario Typology for Crash Avoidance Research · This report defines a new pre-crash scenario typology for crash avoidance research based on the 2004 General Estimates

Documents

Getting Started With Django: A Crash Course … › pdf › gswd-a-crash-course...Getting Started With Django: A Crash Course Documentation, Release 1.0 Auth views HomeView Before

Getting Started With Django: A Crash Course … › pdf › gswd-a-crash-course...Getting Started With Django: A Crash Course Documentation, Release 1.0 Auth views HomeView Before

Documents

Anatomy Morphological Anatomy from a Phenomenological ...

Anatomy Morphological Anatomy from a Phenomenological ...

Documents

Prevent a Collision (crash)

Prevent a Collision (crash)

Documents

The CRASH Program - A Simplified Collision Reconstruction ... 1975 The CRASH Program.pdf · the crash program - a simplified collision reconstruction program ... angi deg. 3600 ct2

The CRASH Program - A Simplified Collision Reconstruction ... 1975 The CRASH Program.pdf · the crash program - a simplified collision reconstruction program ... angi deg. 3600 ct2

Documents

A Crash Course in Python · A Crash Course in Python Alessandro Leite October 11th, 2019 Alessandro Leite A Crash Course in Python October 11th, 2019 1/60

A Crash Course in Python · A Crash Course in Python Alessandro Leite October 11th, 2019 Alessandro Leite A Crash Course in Python October 11th, 2019 1/60

Documents

Kanban - A Crash Course

Kanban - A Crash Course

Business

A C++ Crash Course

A C++ Crash Course

Documents

Crash to Not Crash: Learn to Identify Dangerous Vehicles ...csuh.kaist.ac.kr/Suh_Crash_AAAI.pdf · Crash to Not Crash: Learn to Identify Dangerous Vehicles using a Simulator Hoon

Crash to Not Crash: Learn to Identify Dangerous Vehicles ...csuh.kaist.ac.kr/Suh_Crash_AAAI.pdf · Crash to Not Crash: Learn to Identify Dangerous Vehicles using a Simulator Hoon

Documents