1
rabideau
Re: Serious 2.0.16 hack risk
  • 2007/6/10 0:50

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Hi all,

The dirs in question were 777 and phpSuExec was not running.

Obviously the dirs have been changed now... too little too late I guess.
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



2
rabideau
Serious 2.0.16 hack risk
  • 2007/6/9 23:15

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Hi all,

---Just dropping by for a second to issue an alert based on an experience I encountered this week---

I have had three of my sites hacked by very nasty people. All of the sites were running XOOPS 2.0.16 installed as it should be. One of the sites had 3 phishing sites embedded on it.

Most of the illegal activity was centered in the uploads directory although certain modules like bmsurvey were also violated. I have shut the sites down and will recreate them later.

For now I just want to let the community know they should closely examine their sites including looking for the following:

1. cmd.php
2. c99.php
3. uploads/newbb in each instance this directory as well as one labeled uploads/smartsection and uploads/smartpartner were converted into phishing sites
4. look for any directories where the privs are set to 000 (these seem to be an indication of problems)
5. If you run cpanel access File Manager and select each directory icon if you get a php download request, the file has been most likely compromised.

I hope this helps folks avoid the horrible week I've had trying to clean this mess up. Good luck!

...mark
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



3
rabideau
Re: XOOPS Domain
  • 2007/4/29 12:06

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Hi Don,

It's not free but http://GoDaddy.com has many that cost $0.99
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



4
rabideau
Re: Use totally flash as "Home" for xoops web site, is it possible?
  • 2007/4/28 14:20

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Here's one for you to see: http://dr-allen.com/
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



5
rabideau
Re: Firefox rendering wrong
  • 2007/4/25 15:22

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Hi guys,

The radius comand does not work predictably in either FF or IE.... so if you're using that you may never achieve success,
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



6
rabideau
Re: calling phppp & skalpa, please comment on this thread!
  • 2007/4/20 19:38

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


I am going to kick myself for this but...

Why is it, again, the only person not speaking about the issues critical to his project is the lead programmer???

Is this a time for silence?
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



7
rabideau
Re: The Wave of Change IS Upon Us!
  • 2007/4/19 18:43

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


I am not quite certain but I wonder if the problem is less to do with "how to deal with the XOOPS community problems" and more of an issue of "what causes these problems".

I am a big fan of open honest discourse. Simply stated, I think this community is currently struggling with how to accept and deal with open, honest discourse. Nerves appear to be frazzled and near their breaking point. For whatever reason, people are running too hot and angering too quickly. Humor is even a cause for some to lash out in anger.

Whether the XOOPS management discussions are on the street, in a back room, or hidden in a closet seems less relevant than whether people want to work together and do something positive.
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



8
rabideau
Re: Recommendations for software what I need please
  • 2007/4/18 11:48

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



9
rabideau
CruiseControl
  • 2007/4/18 1:45

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


Hello all,

I am considering using cruisecontrol in a highly active project development environment. I thought I'd check and see if anyone is familiar with this (cruisecontrol) at all?? http://cruisecontrol.sourceforge.net/
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org



10
rabideau
Re: Can I change default module-menu item?
  • 2007/4/18 1:37

  • rabideau

  • Home away from home

  • Posts: 1042

  • Since: 2003/4/25


In my experience the easiest and best way to generate custom menus (without programming) is to use MultiMenu. If you'd like to see these in use any of the links in my signature will demonstrate some of what MultiMenu can do...
Pax vobiscum,
...mark

may the road rise to meet your feet!

http://treemagic.org




TopTop
(1) 2 3 4 ... 78 »



Login

Username:
Password:

Lost Password? Register now!

Who's Online

62 user(s) are online (44 user(s) are browsing Support Forums)


Members: 1


Guests: 61


heyula,

more...

Donat-O-Meter

Stats
Goal: $100.00
Due Date: Dec 31
Gross Amount: $0.00
Net Balance: $0.00
Left to go: $100.00
Make donations with PayPal!

Latest GitHub Commits