On 23 Jul 2007, at 4:01 PM, Erik Mallinson wrote: >>> Can anyone shed light on how the attacker would be able to do this? > > If it was anything like the attack on Dreamhost accounts > (http://www.dreamhoststatus.com/2007/06/06/security-breach/) it was > via FTP and it looks like anything resembling an index page for a cms > was hit. My Radiant sites were the only ones that weren't affected > though. > > - Erik Mallinson > It could also be someone who has an account on nicola? Provided that the database password file is not readable only by the user where the radiantcms site runs under?
Regards --jm > -- > Gravel Road Studios > gravelroadstudios.com > (857) 222-6852 > > ———————————————————— > Q: Why is this email 5 sentences or less? > A: http://five.sentenc.es > _______________________________________________ > Radiant mailing list > Post: [email protected] > Search: http://radiantcms.org/mailing-list/search/ > Site: http://lists.radiantcms.org/mailman/listinfo/radiant _______________________________________________ Radiant mailing list Post: [email protected] Search: http://radiantcms.org/mailing-list/search/ Site: http://lists.radiantcms.org/mailman/listinfo/radiant
