I would like to help a friend who was hacked.
QUOTE:
Ive been searching for *fixes* and can only find others with the same
problem.
Many of the files in my installation of phpBB have an ugly patch of
scripting (Im googling the fairly unique string tmp_lkojfghx)
Last night, the bb stopped working. I found the problem with the files,
deleted them and uploaded fresh. It was working when I went to bed. (I
assumed it had happened recently when the files were set to 777 briefly
for a config change. Theyre changed back, and its still happened.)
This morning, its happened again. The files are read only. There are
only two of us with ftp access and I trust us both.
Crystal Tech is feeding me canned answers from a book, some of which
refer to versions of phpBB which are three years old; one link they sent
was regarding an exploit patched in 2005. (When CT works, its great,
but for some reason, when theres the slightest issue, they suddenly
become corporate stiffs who just keep repeating "not our fault; not our
fault." Also a bit scary, this morning Im having problems connecting to
them via ftp.)
Im not a MySQL admin, nor do I know much about PHP security. But I
cant find any helpful info about preventing this from happening again,
and Crystal Tech is pretty much leaving it up to me.
Thanks!
S
Read More...
No comments:
Post a Comment