On Sat, 26 Nov 2005 02:58:48 -0800 "Bruno S. Delbono" <[EMAIL PROTECTED]> wrote:
> Hi All, > > One of our servers got hacked this morning. The culprit turned out to be > mambo. This is a second time this has happened with mambo and I am ready > to junk it. I would've junked it the first time though. > > Is there a better, more secure replacement as a CMS? I'd go for Plone. I did several websites with it, and I liked it. Though it would be overkill to use it for a regualar blog or something like that. > > PS - Here is the 0-day expolit (for all versions of mambo not protected) > including the latest version > [...] > Cheers, Jasper -- "Security is decided by quality" -- Theo de Raadt [demime 1.01d removed an attachment of type application/pgp-signature]