Security Breach ?

Alexander Dalloz ad+lists at uni-x.org
Thu Mar 3 00:57:25 UTC 2005


Am Do, den 03.03.2005 schrieb Chris Strzelczyk um 1:49:

> > I
> > would heavily appreciate if you would us all inform how that could
> > happen. You always installed security updates quickly?
> 
> The only thing I can see right now is a cgi application called click 
> cart pro or a php application
> called gallery.  Other than that I have not other applications running 
> on this webserver that execute.
> I don't want to point the finger at any application just yet until I do 
> a little investigating.
> 
> Thanks, -cs

gallery.sf.net? This is too a PHP application with frequent security
updates - often enough for serious issues. Do you run an old version?
"Cart Pro" does not tell me anything.

Alexander


-- 
Alexander Dalloz | Enger, Germany | GPG http://pgp.mit.edu 0xB366A773
legal statement: http://www.uni-x.org/legal.html
Fedora Core 2 GNU/Linux on Athlon with kernel 2.6.10-1.14_FC2smp 
Serendipity 01:52:25 up 9 days, 13:01, load average: 0.61, 0.57, 0.53 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20050303/614f50d8/attachment-0002.bin 


More information about the users mailing list