Ravens PHP Scripts: Forums
 

 

View next topic
View previous topic
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke
Author Message
djrino
Regular
Regular


Joined: Mar 11, 2005
Posts: 52

PostPosted: Wed Nov 29, 2006 11:35 am Reply with quote

I first sorry for mu bad En i'm using a traslator..
i have my phpnuke site 8.0 with patch 3.3 last version of forum and all sitems use nsn script...

i'm ached many times with this sistem...this shell..
the hacker(i dont say how) put a shell arquive into my ftp an gai access to may config.php ant to my cpanel account...

Now i have many questions about this..

1) on the config.php there is a solution to mask the username, password to my site????

2) how i see the security level of my host?

i have see this phpmanual
Only registered users can see links on this board! Get registered or login!

ehah is say the tips to put the config.php to oter place..
but if the hacker gain access with this shell it read the config and view where my config.php is.......

Many tnx
 
View user's profile Send private message
evaders99
Former Moderator in Good Standing


Joined: Apr 30, 2004
Posts: 3221

PostPosted: Wed Nov 29, 2006 1:11 pm Reply with quote

Generally moving config.php is a waste of time. It provides no real security measure except if your host does not run PHP anyway and puts your passwords in plain text.

There is no way to mask the password really. There are always ways to obscure it, but easy ways to bypass it because the password eventually needs to be passed to MySQL login.

The security level is either safe mode or not. I suggest asking your host

_________________
- Only registered users can see links on this board! Get registered or login! -

Need help? Only registered users can see links on this board! Get registered or login! 
View user's profile Send private message Visit poster's website
djrino
PostPosted: Wed Nov 29, 2006 1:30 pm Reply with quote

Hi
many tnx for reply..
at this time i have moved the config.php and i have changed my host and the attack are stopped...

now i ask to my host the security level..

this forum have help me more
i say many tnx for you..

Tnx again man
 
djrino
PostPosted: Thu Nov 30, 2006 1:36 pm Reply with quote

hi evader my host have reply to me and it not use the safe mode...

many tnx for your time
 
Display posts from previous:       
Post new topic   Reply to topic    Ravens PHP Scripts And Web Hosting Forum Index -> Security - PHP Nuke

View next topic
View previous topic
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You can attach files in this forum
You can download files in this forum


Powered by phpBB © 2001-2007 phpBB Group
All times are GMT - 6 Hours
 
Forums ©