The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SOLUTION for Gumblar/IFRAME/JS hacks with stolen FTP Passwords...

Discussion in 'Security' started by hidonet, Aug 7, 2009.

  1. Voltio

    Voltio Active Member

    Joined:
    Oct 17, 2004
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    I guess its not working. I just uploaded a .txt file with that code without a problem.
     
  2. noimad1

    noimad1 Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    627
    Likes Received:
    0
    Trophy Points:
    166
    Make sure in the ftp_clamscan_config.php file that you have the path to clamscan set correctly. I noticed that was my problem when I first installed.

    The default was set to:

    /usr/bin/clamscan

    But in all of my installations it was set to:

    /usr/local/bin/clamscan

    a simple "locate clamscan" should give you your location.

    Then be sure to restart pure-ftp of course.
     
  3. noimad1

    noimad1 Well-Known Member

    Joined:
    Mar 27, 2003
    Messages:
    627
    Likes Received:
    0
    Trophy Points:
    166
    Oh yea, and if you have csf installed be sure to disable it before you test it so you don't block yourself from the server.....
     
  4. Voltio

    Voltio Active Member

    Joined:
    Oct 17, 2004
    Messages:
    32
    Likes Received:
    0
    Trophy Points:
    156
    Mine is correct, but I notice this on the logs:

    2010.06.17 22:04:23 --- init... File : /home/username/public_html/test.txt
    2010.06.17 22:04:23 --- wordscan : NOT FOUND.
    2010.06.17 22:04:23 --- end...


    o.o! any clue?

    Thanks for your assistance.
     
    #124 Voltio, Jun 17, 2010
    Last edited: Jun 17, 2010
Loading...

Share This Page