First thing I would try is removing PHP. If you are not using it that much why suffer the security issues? Depending on how it is being use can you move that functionality to a standard cgi process? If you can't remove it, implement modsecurity to see if that does anything to help.
Are you sure you have not been compromised through a PHP security issue? One other thing to try would be to stand up a new webserver, copy the content and functionality over and put it up in its place. See if the issue happens on the new server. If it does, then I would think that points to an external issue exploiting a configuration issue. Its an interesting issue, that's for sure! Kent -- -- You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en --- You received this message because you are subscribed to the Google Groups "NLUG" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.
