> I have taken this (very important) Security Advisory: > > Security Advisory -- PHP-Nuke Remote Compromises > Posted on Friday, November 02 @ 12:34:35 EST > > http://www.e-smith.org/article.php3?sid=54&mode=threaded&order=0 > > and created the following HowTo to apply to all your PHP apps: > > http://myezserver.com/docs/mitel/restrict-file-access-howto.html >
Good point Darryl - My IDS picked up someone trying to expolit this on my server yesterday. Luckily I had patched already. I guess the timing for my Tripwire add-on makes more sense now :) I was going to post the information here also but thought it to be outside the realm of the list. Justin. -- Please report bugs to [EMAIL PROTECTED] Please mail [EMAIL PROTECTED] (only) to discuss security issues Support for registered customers and partners to [EMAIL PROTECTED] To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Archives by mail and http://www.mail-archive.com/devinfo%40lists.e-smith.org