You are here: Re: Hacker's attack, please help... « PHP Programming Language « IT news, forums, messages
Re: Hacker's attack, please help...

Posted by lvaro G. Vicario on 02/02/08 13:14

*** salonowiec escribió/wrote (Sat, 2 Feb 2008 12:47:09 +0100):
> My admin notified me that my site is closed till the eror is removed. My CMS
> is PHPBlue Dragon (pretty old). The attack was like this (found in logs):
> -
> [01/Feb/2008:19:44:06 +0100] "GET
> /public_includes/pub_blocks/activecontent.php?vsDragonRootPath=
> HTTP/1.1" 500 599 "-" "Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1;
> .NET CLR 1.1.4322)"

You can insert this code on top of activecontent.php:

if( isset($_REQUEST['vsDragonRootPath']) ){

However, it's pretty likely that there're some other security holes like
this so I'd consider migranting to a newer CMS in the mid term.

> <?php
> include($vsDragonRootPath."public_includes/pub_moddata/activefile.".$phpExt);?>Can I - rather ignorant in php - modify the file to make it hackerresistant? Many thanks

-+ - Álvaro G. Vicario - Burgos, Spain
++ Mi sitio sobre programación web:
+- Mi web de humor austrohúngaro:



[Reply to this message]

Удаленная работа для программистов  •  Как заработать на Google AdSense  •  England, UK  •  статьи на английском  •  PHP MySQL CMS Apache Oscommerce  •  Online Business Knowledge Base  •  DVD MP3 AVI MP4 players codecs conversion help
Home  •  Search  •  Site Map  •  Set as Homepage  •  Add to Favourites

Copyright © 2005-2006 Powered by Custom PHP Programming

Сайт изготовлен в Студии Валентина Петручека
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация