On Mon, 2006-07-03 at 12:04 +0800, Happy Kamote Foundation wrote: > hmmm, > > some files were deleted? imnsho typically, the attacker only gained > the webserver's account (if the attack is REALLY on phpbb), how come > the index files were replaced, and some files were deleted? is the web > root of the webserver on openminds writable or owned by the > webserver's account? tsk tsk tsk! > Simple: phbb is installed as a user, and on a user-writable partition, say /home/user/public_html. It's quite simple in apache to make a virtual hostname openminds.linux.org.ph to use the /home/user/public_html directory.
If you'd be really be wanting to do something a little more secure for web based applications, it's quite a common recommendation NOT to install your CGI's (or any executable content) on a writable area. > On 7/1/06, manny <[EMAIL PROTECTED]> wrote: > > On Tue, 27 Jun 2006, Dominique Cimafranca wrote: > > > I spoke with the administrator of the server. The exploit took place > > > through > > > an older unpatched version of phpBB-Nuke, which one of the users had > > > uploaded to the site. Only the bulletin board was compromised. The > > > server > > > itself wasn't. > > > > I checked the site. It's missing some frames. Probably some files were > > deleted. > > > > God bless! > > _________________________________________________ > > Philippine Linux Users' Group (PLUG) Mailing List > > [email protected] (#PLUG @ irc.free.net.ph) > > Read the Guidelines: http://linux.org.ph/lists > > Searchable Archives: http://archives.free.net.ph > > > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph -- Paolo Alexis Falcone [EMAIL PROTECTED] _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
