Indexhibit Support

My site is repeatedly having .htaccess files showing up in the home directory, as well as under 'files' and 'gimgs'.

It results in my site having links non-operational and style sheets being completely ruined. I can keep deleting the .htaccess files, but I'd rather not have my site keep going down randomly until I fix it.

Anybody have any clues? I'd like to retain my data, and I've gone through the forums and swapped out all the main files of indexhibit before...or should I swap out all the files and run install.php? (Yes, I delete install.php everytime I re-load the indexhibit files)

And, what is your site?

Sorry, it's

http://www.plusgoodmedia.com

I deleted the .htaccess files in /gimgs and /files and the /html directory already, so it's working right now, but every few days or so, it'll appear without images, no style sheets, and broken links. Should I wait until it breaks again and respond?

It breaking like this doesn't sound like an Indexhibit issue. I would chalk it up to some server issue or perhaps you are accidentally deleting or damaging files. It makes no sense that it works for a few days and then does not (the problem is something else).

http://www.plusgoodmedia.com/

It's down again, and it's more like it's being hacked, as the .htaccess files keep re-appearing. Except I have no idea how it keeps being hacked...

I fixed it again, if it means anything the files are repeatedly being added via Apache and not FTP.

The most common hack out there these days is a vulnerability in an FTP application. If one person who is on the same server as you (shared hosting) has fallen prey to that then there is nothing you can do...except move to a better host.

Hosts blame webapps instantly - even without knowing their security record. People who make webapps have to rely upon the hosts (do people wonder why some hosts never have problems with hackery? there is a reason for it). And the reality is that any web application, ANY, that allows you to upload files via script could potentially be exploited under the right circumstances...we're all living with this reality.

Talk to your host...of course, we know what they will say...find others on the same shared server and see if they are being hacked...etc...etc...

Thanks! I am contacting my service vendor, which is aiso.net

You guys are great, and I have been browsing the forums for awhile...so I trust you. I told my provider that I have spoken to you folks numerous times about this, and that there is no way it could be your software.

Thanks Vaskas. If push comes to shove, I'll find another eco-friendly host.

You really have to ask the question...why do webhosts even allow webapps on their servers if they are nothing but bad? Answer: because our webapps help them make that money with our hard, free work.

WP has a security note on their site that basically says the exact same thing I'm saying here.

But, as I mentioned, why is it that quality hosts hardly, if ever, have problems with hackery? Right...same webapps...no hackery...the math is there for all to calculate.