Date: Mon, 27 Dec 2004 18:18:30 -0800 From: Julian Elischer <julian@elischer.org> To: Jerry Bell <jerry@syslog.org> Cc: estover@nativenerds.com Subject: Re: Found security expliot in port phpBB 2.0.8 FreeBSD4.10 Message-ID: <41D0C276.7080100@elischer.org> In-Reply-To: <2990.24.98.86.57.1104197295.squirrel@24.98.86.57> References: <34657.24.230.37.14.1104187002.squirrel@24.230.37.14> <2990.24.98.86.57.1104197295.squirrel@24.98.86.57>
next in thread | previous in thread | raw e-mail | index | archive | help
Jerry Bell wrote: >The update for phpbb came out a while ago, and it looks like the ports >were updated on 11/25/2004. Have you tried updating the ports? I think >this is already addressed. > >On a side note, I'm suprised you didn't get hit by the worm (unless it >happened before the worm came out). There is a new worm out now that >attacks some weak php programming, though it's not very widespread. See >http://www.syslog.org/Article10.phtml for a little more detail. > >I don't know if it's a worm or not, but I'm seeing people trying to attack >my site pretty frequently lately. > >Best regards & happy holidays, > >Jerry >http://www.syslog.org > might be a good idea if we "urged" users to update their phpbb a bit more vocally.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41D0C276.7080100>