Community Q&A:

RewriteRules in my .htaccess file, is this a hack?

Asked by:
maxbrooker / 21 Points Time:
2012-01-23 2:02 pm EST Category:
Htaccess Hits:
2,307
Hi, I'm aware that you had a server compromised back in September 2011 and you replaced defaced index pages with back-ups. Could htaccess files have been compromised too? I have been looking at mine today and it's full of a huge list of RewriteRules that have nothing to do with my sites. for example: RewriteRule ^grease-(.*)/$ ./spacer/charlottes.php?$1

If so, I guess the best thing to do would be to repelace the htaccess file with a new one - but I have no idea what it should contain. Do you have a standard htaccess file that is installed by default, if so where can I get a copy?

I have very limited experience of server administration so would welcome any help and advice.

Thanks.
Max Brooker

To ask this user for more information, please first login.

To submit an answer, please login.

Best answer chosen by Web Hosting Hub staff

0

ChristiNi
Staff
13,688 Points
2012-01-23 7:10 pm EST
Hello Max,

Thank you for your question regarding your .htaccess file. While yes, there was an attack on our servers in September 2011, that particular attack was a defacement attack which targeted index files. There were no alterations made to .htaccess files. While researching this for you, I also see that your .htaccess file was last modified in May of last year (4 months prior to the attack on our servers). I did see a large number of those Rewrite rules that you mentioned. It's difficult to tell exactly what the point of those rules might be since the folder and file referenced in the rewrite doesn't exist.

The default .htaccess file is blank (or doesn't exist until needed). This is because the need for an .htaccess file depends on the software you use to create your site as well as what you are trying to do (e.g. redirects, password protect directories, etc.). I would recommend creating a backup of your .htaccess file and then removing the .htaccess code from "RewriteEngine on" to the end of the file and then checking to make sure your site still works as expected.

Please let us know if you have any questions or need any additional assistance.

Regards,

Christi N.

To submit a comment on this answer, please first login.
Want to share this Question?

Help Center Login

Related Articles

It looks like there are no related articles.
Would you like to ask a question about this page? If so, click the button below!
Need More Help?

Help Center Search

Current Customers

Email: support@WebHostingHub.com Ticket: Submit a Support Ticket
Call: 877-595-4HUB (4482)
757-416-6627 (Intl.) 		Chat: Click To Chat Now

Ask the Community

Get help with your questions from our community of like-minded hosting users and Web Hosting Hub Staff.

Not a Customer?

Get web hosting from a company that is here to help.
}