Add support for new/added/created files

I tested the patch in #4 against the current dev, and I have a few comments/questions...

1. When I run the Hacked report or view a result, it throws this error message:
   

   Notice: Constant HACKED_STATUS_DELETED already defined in include_once() (line 18 of /home/ruffsack/public_html/sites/all/modules/hacked/hacked.module).

2. When you view a result, it shows "Created" files as "Deleted" in the column on the right.
3. It did find a test.php file that I added to the Webform module directory, so that is working quite nicely.
4. It also reported several "files created" for benign files that are part of contrib modules. For example, it told me that the Ubercart contrib folder contained "9 files created". I compared the Ubercart installation files to a fresh download of the module, and it appears that Ubercart adds files to its installation folder, perhaps when you activate certain features. For example, I have a file called shipping/uc_ups/uc_ups.css that doesn't exist in a fresh download of UC. It is simply CSS code to style the UPS options at checkout. Not sure how that could be handled/ignored. Perhaps there simply needs to be some due diligence by the webmaster to take note of which modules contain those kinds of files.

   Another example is the Entity API module. Hacked reports this file, which is benign: "views/error_log" (no extension on the file)

5. It reports that Drupal core has "9502 files created", so it is counting the fils/ dir, the contrib modules, etc. Again, not sure of a way to avoid that, but it makes it difficult or even impossible to find backdoors in Drupal core.

Thanks!

How would I disable scanning of core files. You are right that regular updates will eliminate any new files in the core folder structure...

Sounds good, thanks!

Had a moment to try the new patch today. 1 and 2 are resolved.

RE: #5, it shows Drupal core in red with "Changed!" and says "0 files changed, 0 files deleted".

Thanks!

I've been rolling out the patched version on several sites, and have been encountering this error while running the Hacked report on quite a few of them:

An AJAX HTTP request terminated abnormally. Debugging information follows. Path: /batch?id=35&op=do StatusText: error ResponseText: ReadyState: 0

Is this a memory issue on the server? Or something else?

Essential patch that works well.

It could provide an useful option : the possibility to ignore the public file directory cause if you have a lot of media, the system will detect a lot of changes.

I put it as reviewer too quickly, it seems that with this patch, drupal consider every contributed module as added files. It should ignore it.

Add this task for D8 #3046936: Add support for new/added/created files D8

I am using #19 with 7.x-2.0-beta8 and can confirm that it finds added files.

Automatically closed because Drupal 7 security and bugfix support has ended as of 5 January 2025. If the issue verifiably applies to later versions, please reopen with details and update the version.