Menu
▾
▴
Re: [Phpwebsite-security] Security warning
|
From: matt <ma...@tu...> - 2008-01-23 17:44:34
|
Good afternoon, So far, we are leaning towards a systematic attack on our server. We believe this because: 1) The access logs contain blind, unspecific attacks around the time the server was compromised. This hints at hack script. 2) Other sites that were compromised with the same referrer (we were unknowingly hosting boner drug ads) do not use phpwebsite but are running PHP. 3) Usually when the software is at fault, we can see a prior GET or POST parameters that allowed intrusion. In our case, there isn't one. We were running an older version of PHP (which we are now upgrading) known to have security holes. Ya big oops there... We will continue to investigate further and if we find a problem specific to phpWebSite I will make a patch immediately. Thanks, Matt P.S. Thanks to Anton again (he revealed our Search bug) for notifying us. matt wrote: > Hello, > > Our site has been hacked. The hacker found a way to upload files. We are > unsure of the specifics of the hack and we are looking into it now. > > Please check your phpWebSite 1.x installations. > > I will get a patch up as soon as I can. > > Matt > -- Matthew McNaney Electronic Student Services Appalachian State University Ext. 6493 http://ess.appstate.edu http://phpwebsite.appstate.edu |
