Hacker problem

[MyrrhLynn]

Hey everyone! I've been asking other people about this but I'd thought I'd post it up here, just in case any of you had some suggestions.

Now I took a Perl class in college so I know all about the evils of 777 permissions, however that's all I've been able to get to work with my upload forms. So I have several 777 folders all over the place on my server space. Now it seems though a hacker is taking advantage of them to upload huge movie files to any folder I have with 777 permissions. I tried emailing my hosting about it, in case they could trace it, but they said it was uploaded by (and I quote) "Nobody" and then proceeded to lecture me about not using 777 permission on my folders.

Someone else suggested that maybe my forms that allow file uploads are providing the hacker with a way in, but I double checked and all my forms with file uploads are password protected with sessions, and they only allow picture files under 1 meg to be uploaded. So I don't think it's them.

Any ideas? I tired camping out on FTP manager, and my Latest visitors report to see if I could catch the hacker but so far have been uncessful (which I'm pretty sure means that he/she is not using FTP at least).

[shooraijin]

If you PM me the location of your forms, I'll take a look. I don't need any passwords; I just want to see if I can break in the same way. If I can, I'll tell you how I did it.