#1 Security compromise

development
closed
nobody
wike (4)
5
2006-05-26
2006-05-01
Anonymous
No

Hello!

I have installed the new version of the wikepage a few days ago, and I
like it very much. All worked fine and well.
Today, tough, our mailserver got blocked. Nobody knew why. Finally,
we found out that a external attacker used wikepage to spam to our
mailserver. I'm still checking how exactly this could happen, but I'm a
bit puzzeled.

Do you know how this could be possible?
I not running php in safe mode, as you recommend, and also made the
directory chmod 777. Is it likely that one of these two caused the
problem????

I will keep you informed if I find out more, but please let me know of
any ideas how to look for the security breach.

Thanks again for your great program!!!!

Gilbert

gilles77@tiscali.ch

Discussion

    • status: open --> closed