Having been the victim of a handful of hacking attacks over the years, I decided to be a bit more proactive about the problem for a new site I’m working on. A little research turned up the following post by Jerod Santo, which I found to be a very clever approach:
http://blog.jerodsanto.net/2009/05/git-informed-when-your-site-is-hacked/
So, if I’m not able to prevent the attacks altogether, at least I’ll be notified in a timely manner when it happens, and I can use git’s tracking of the changes to revert to a healthy version of the site.
It sure beats having a call or email from a client similar to this one, which I received last summer:
When I click “online store” I get a box that states. “[[HACKED by jhOnyramsOy]]. When I click on the X to get out of that box, it takes me to a web page that is all black, has a white skeleton head flashing in and out,has spooky music playing and in red lettering it states: “INDONESSIAN HACKER GOT YOUR WEBSITE”
