The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help with tracking down php holes.

Discussion in 'General Discussion' started by WebHostPro, Feb 20, 2004.

  1. WebHostPro

    WebHostPro Well-Known Member
    PartnerNOC

    Joined:
    Jul 28, 2002
    Messages:
    1,597
    Likes Received:
    10
    Trophy Points:
    168
    Location:
    LA, Costa RIca
    cPanel Access Level:
    Root Administrator
    Twitter:
    Anyone have any ideas for tracking down potential security holes in shared account php scripts like nuke?

    I would like to know what account are vulnerable and what account is allowing the hack if it happens from a php hole.

    Thanks all,

    -Charles
     
  2. hostit1

    hostit1 Well-Known Member

    Joined:
    Jul 24, 2003
    Messages:
    88
    Likes Received:
    0
    Trophy Points:
    156
    I have a site hosted on a server that is php nuke powered.

    It seems that php nuke has a hole because this customers website was hacked.

    We have our servers locked down pretty good with IDS, Firewalls, etc. Chkrootkit did not show anything as being hacked (which may not have every hack in its database).

    Can anyone shed some light on how to protect phpnuke users?

    Sincerely,

    Tim Rice
     
Loading...

Share This Page