arjanvr

Well-Known Member
Dec 13, 2013
113
1
18
cPanel Access Level
Root Administrator
Hello,

A system administrator was working on my server today after someone apearently hacked into WHM (not sure how they did that because i use authenticator) but the managed to create a website and change my root password.

He saw and told me that cpanel is using an extremly inefficient php variant.. something he said like the i varient. Most likely because it was easy to use with multiphp. Is this true and can it be improved to a more effective variant?

And while i am submitting here, how can someone got trough my authenticator to be able to do that? or can he do everything from shell?

Thanks
 

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,909
2,228
463
Hello,

He saw and told me that cpanel is using an extremly inefficient php variant.. something he said like the i varient. Most likely because it was easy to use with multiphp. Is this true and can it be improved to a more effective variant?
Could you provide some more details about this?

And while i am submitting here, how can someone got trough my authenticator to be able to do that? or can he do everything from shell?
It's difficult to pinpoint the specific vulnerability or exploit used by an attacker to hack your websites. One could speculate on common methods (e.g. symlink attack), but it really requires a qualified system administrator to investigate the logs on your server and determine the source of the attack. There is a thread here where a similar question is asked:

Log Files To Check After Account Hacked

Thank you.