Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
SmackDaddy
Involved
Involved



Joined: Jun 02, 2004
Posts: 268
Location: Englewood, OH

PostPosted: Fri Jun 04, 2004 6:10 am Reply with quote

I have only seen this posted on PortedMods.com:
[ Only registered users can see links on this board! Get registered or login! ]

Thoughts/ideas?
 
View user's profile Send private message Send e-mail Visit poster's website
Raven
Site Admin/Owner



Joined: Aug 27, 2002
Posts: 17088

PostPosted: Fri Jun 04, 2004 6:40 am Reply with quote

It's from Security-Focus 5/30. I had seen it there when it got posted as I check there most every day. In order for this to happen, the attacker has to have the ability to create a symlink in the nuke directory. The way I looked at that is this. If the person is able to create a symlink, you have much bigger problems than Nuke. I am not discounting this advisory, so don't misunderstand me. It needs to be plugged. There is also a "patch" to config.php that is posted there but I haven't tested it. WE will and someone will get back to this post. Thanks.
 
View user's profile Send private message
SmackDaddy







PostPosted: Fri Jun 04, 2004 6:48 am Reply with quote

Thanks Raven.....I didn't understand the symlink issue.....was just making sure I wasn't patching when I didn't need to as I seem to try and keep on top of security, but I think it's making people a bit trigger happy at every security alert and I just want to be safe.....again, thanks.
 
Raven







PostPosted: Fri Jun 04, 2004 6:57 am Reply with quote

In *nix environments you can have symlinks (a SYMbolicLINK, i.e. a pointer) to other folders. For example, Most hosts have a folder called public_html. You will also usually see a symbolic link "www" that points to public_html. So, you can reference that folder with either link.
 
SmackDaddy







PostPosted: Fri Jun 04, 2004 8:41 am Reply with quote

Ahhhhh...okay. Thanks.
 
chatserv
Member Emeritus



Joined: May 02, 2003
Posts: 1389
Location: Puerto Rico

PostPosted: Fri Jun 04, 2004 8:55 am Reply with quote

The config.php suggestion seems valid, it needs to be tested though
 
View user's profile Send private message Visit poster's website
Tank863
New Member
New Member



Joined: May 29, 2003
Posts: 16

PostPosted: Sat Jun 05, 2004 11:39 am Reply with quote

I tried the config suggestion.. and the proff of concept blew right thru it....

hmmmmm....
 
View user's profile Send private message
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©