I have just realized that some of my original entries dating back to 2004 have been hacked.

Here are some examples:

1) The hacker has added the link FIRMWARE DVIX HACKING to
http://www.skakagrall.com/archives/000099p...flowcharts.html

2) The hacker has added the link jardic to:
http://www.skakagrall.com/archives/000084a...the_weblog.html

3) My biography has been removed from:
http://www.skakagrall.com/archives/000085a...n_holledge.html

(There may well be other pages affected that I haven't found so far.)

I have logged into MT and looked at the texts as entered and they seem fine.

Can anyone suggest how I can clean up the blog and prevent hacking in future. I had my firewall off, but have put it on again.

Thanks,
Simon

if the entries look normal, it's entirely probably that all the bad guy did was edit the HTML files. A simple rebuild of all your entries should replace the altered files with clean content. As for how to prevent it, you will have to investigate how access to the server was obtained. Before you rebuild, I would get with your host provider and work with them to find out how the the bad guys got in and close those holes.

Much appreciated! I will follow your advice. Thanks, Simon

There are two articles on Learning Movable Type that will explain how Elise tightened down her permissions after she had trouble with hackers:
http://www.learningmovabletype.com/announc...822attacked.php
http://www.learningmovabletype.com/announc...to_attacked.php

She also has an article about setting the Umask directives:
http://www.learningmovabletype.com/archive..._and_suexec.php