Question about updating PHP version

[arjanvr]

Hello,

A system administrator was working on my server today after someone apearently hacked into WHM (not sure how they did that because i use authenticator) but the managed to create a website and change my root password.

He saw and told me that cpanel is using an extremly inefficient php variant.. something he said like the i varient. Most likely because it was easy to use with multiphp. Is this true and can it be improved to a more effective variant?

And while i am submitting here, how can someone got trough my authenticator to be able to do that? or can he do everything from shell?

Thanks

 

[cPanelMichael]

Hello,

He saw and told me that cpanel is using an extremly inefficient php variant.. something he said like the i varient. Most likely because it was easy to use with multiphp. Is this true and can it be improved to a more effective variant?

Could you provide some more details about this?

And while i am submitting here, how can someone got trough my authenticator to be able to do that? or can he do everything from shell?

It's difficult to pinpoint the specific vulnerability or exploit used by an attacker to hack your websites. One could speculate on common methods (e.g. symlink attack), but it really requires a qualified system administrator to investigate the logs on your server and determine the source of the attack. There is a thread here where a similar question is asked:

Log Files To Check After Account Hacked

Thank you.