User uploads and spam users

We have some problems with spam user registrations in our OJS 2.x. (we are planning to upgrade to 3.x with captcha shortly)

Some of the unwanted users has managed to upload files to this folder:
Is that an indication that our system has been compromised or can any user upload images to subfolders there?

Grateful for any comments…

Best regards,

Forget this!


You can put ib your that confirmation mail is required.
Also in your /public folder
you can put .htaccess file with
deny for all

Hi @andfa,

See e.g. this thread. Your site isn’t hacked.

Alec Smecher
Public Knowledge Project Team