The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help with tracking down php holes.

Discussion in 'General Discussion' started by DWHS.net, Feb 20, 2004.

  1. DWHS.net

    DWHS.net Well-Known Member
    PartnerNOC

    Joined:
    Jul 28, 2002
    Messages:
    1,569
    Likes Received:
    6
    Trophy Points:
    38
    Location:
    LA, Costa RIca
    cPanel Access Level:
    Root Administrator
    Anyone have any ideas for tracking down potential security holes in shared account php scripts like nuke?

    I would like to know what account are vulnerable and what account is allowing the hack if it happens from a php hole.

    Thanks all,

    -Charles
     
  2. hostit1

    hostit1 Well-Known Member

    Joined:
    Jul 24, 2003
    Messages:
    88
    Likes Received:
    0
    Trophy Points:
    0
    I have a site hosted on a server that is php nuke powered.

    It seems that php nuke has a hole because this customers website was hacked.

    We have our servers locked down pretty good with IDS, Firewalls, etc. Chkrootkit did not show anything as being hacked (which may not have every hack in its database).

    Can anyone shed some light on how to protect phpnuke users?

    Sincerely,

    Tim Rice
     
Loading...

Share This Page