Remote file inclusion ( RFI ) protection code is Code for .htaccess to protect you against Remote file inclusion attacks of bots or hackers.

Copy-paste this code and insert at top in your htaccess:



When some bad hacker will try to attack web site with Remote file inclusion attack, bot or hacker will be redirected to url:


If you dont have such a php script, redirect to google or some other unreal url address in this way:



If you already have these lines in htacces:


dont copy them twice, use only other two lines for Remote File Inclusion Protection.

My Joomla 1.5.26 site was recently hacked by Hmei7.
I followed instructions on http://www.joshpate.com/2013/01/how-to-fix...oomla-web-site/ to get the site up and running again. It was pretty straight forward and I assume that it could have been a lot worse than it was. I was quick to act so I only got about 3 hours downtime. Though judging by the mails I got I did lose a few customers on those hours.

Now I ended up on this forum to read a bit more on the exploit used in this attack in order to try to fix it.
I found two suggestions for Joomla 1.5

The decision to not hack joomla 1.5:
1. Lock folder administrator. With password or by IP address.
2. Add to your htaccess file defense against RFI - Remote File Inclusion protection.

I am curious about how to lock folder administrator with password or by IP address. This sounds like a good security measure, but I don't know how to do it.

Defense against RFI

Now I did implement these two lines in my .htaccess file



The



was already included in my .htaccess file. All four lines are not neatly in a row after eachother, but as long as they're all in there and not commented out I guess that it should work? Now that leads to my main question. How can I know that it works?

I was thinking about using the



But I am not sure how this works? Can I just use that your-trap.com/php-trap-script.php? Or do I need a trap script on my site and redirect them to that? If, then where can I get that script?

Thank you for the useful info thus far and I hope that you can help me with the questions above, Your help would be much appreciated.

Thank you.

If you don't know how to make bot trap with php, just redirect hacker to google or to other url.

Then I'll just do that. There is no official bot trap url that you know of that could be used?

Again, how do I go about to lock the folder administrator with password or by IP address? Is this something I should be asking my webhost about?

Then I'll just do that. There is no official bot trap url that you know of that could be used?

Again, how do I go about to lock the folder administrator with password or by IP address? Is this something I should be asking my webhost about?

by IP address: from htaccess:


with password: from cpanel.