Your instinct to reach for a backup is exactly right. I would want to start with a clean installation of the software, in a different location (ideally different server - nuke the old one from orbit, it's the only way to be sure)
Your malware attack might have damaged the data in the database, but it won't be able to inject anything that can proliferate, so even if it has damaged your data, your backups should be fine.
To recover, I would
- Install and set up a new, empty, installation of Confluence on a new server.
- Once it's got the basics running (you can log in as an admin and see that there are no spaces), restore a backup into it.
The question at this points becomes what type of backup you have taken. If your database has not been affected by the malware, then you could just stop Confluence, point it at your old database, move the attachments to the new server, restart it and kick off a re-index. If your backup is a database dump, you can do much the same after restoring the dump to a new database. Or if you're relying on the XML backups, go to Admin -> backups -> Restore to re-import everything. There are, of course, other backup methods, so we'd need more info if you have used something else.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.