Results 1 to 11 of 11

Thread: Reminder: Remove the 'install' folder

  1. #1
    AV Scripts Founder
    Join Date
    Oct 2006
    Location
    England
    Posts
    8,664

    Default Reminder: Remove the 'install' folder

    It's really important that you remove the install folder after installing or updating. Today people have been noticing their sites compromised due to leaving the install folder on their site.

    If your site has been 'hacked' please download this file:

    http://www.avscripts.net/avarcade/repairer.zip

    Place in your main directory and run.

    This will reset all your AV Arcade settings and make only the original admin user an admin as a precaution. You will need to login via the admin panel as the site URL will not be correct.

    I will be securing the install folder in the next release so even when people forget, the installer wont run if the site has already been installed.

    Andy

  2. #2
    License owner
    Join Date
    Apr 2010
    Location
    Canada
    Posts
    1,168

    Default

    THat will be a nice addition to those that fail to read the announcment upon install to remove the install folder lol... great support as always man

  3. #3
    AV Scripts Founder
    Join Date
    Oct 2006
    Location
    England
    Posts
    8,664

    Default

    I am going to hold my hands up and say that I left it on demo.avarcadepro.com myself. It wont be hard to add a simple check, I already have it so that the next version should be able to detect the current version and automatically run the required update.

  4. #4
    License owner
    Join Date
    Oct 2009
    Posts
    106

    Default

    Shame on me! I forgot it on 2 of my websites

  5. #5
    License owner
    Join Date
    Dec 2010
    Location
    The Netherlands
    Posts
    194

    Default

    It is indeed important to delete it
    Nice mod for when you have forgotten it, and things went wrong!

  6. #6
    License owner
    Join Date
    Jun 2009
    Location
    Charlottesville, Virginia, USA
    Posts
    3,315

    Default

    Yep I got nailed just today with the Rick Rolling prank on my Girlz Gamez site. Man I thought I had that damned file deleted. Guess I forgot last update. My host is looking for the path of the hack then if I have to Ill reset the site. Does this fix erase everything to a fresh install?
    Last edited by Bad Wolf; 04-15-2011 at 06:05 PM.

  7. #7
    License owner
    Join Date
    May 2008
    Location
    Nottingham, UK
    Posts
    580

    Default

    Thanks for the heads up. My Pro sites were all safe but I found one of my V4 sites still had the install folder.

  8. #8
    License owner
    Join Date
    Oct 2009
    Location
    Canada
    Posts
    1,095

    Default

    My issue of me getting hacked thru the install folder was t hat a user managed to create a new ava_settings. the fix included, i would assume fix my issue.

  9. #9
    License owner
    Join Date
    May 2010
    Posts
    798

    Default

    hi,

    i suggest to not upload the dirs (install offline and upload the installed version), or if this does not work for you, rename the dir to something less obvious and access the install-routine therein.

    but you can easily patch av to check this after upload.

    open /index.php
    at the very top add:
    PHP Code:
    <?php
      
    if (file_exists(dirname(__FILE__).'/install')) {
        die (
    'remove install dir!');
      }  
    ?>
    done.

    regards,
    thomas.
    helpful post? buy me a drink!

  10. #10
    License owner
    Join Date
    Jan 2011
    Posts
    76

    Default

    Any idea how one could edit your .htaccess to redirect serp results to their crap?

  11. #11
    Junior Member
    Join Date
    Sep 2017
    Posts
    4

    Default

    Friendly reminder to remove all MODS before Qualifiers ! Friday, July 25 ... In order to remove these mods, go to your install folder

    _______________
    www.gmail.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •