goring_gap Posted January 10, 2005 Posted January 10, 2005 Over the weekend somebody replaced my osc index.php and left the following message: "Command Tribulation ownz your bsd b0x - www.commandt.org - sorry friend..... God bless you" As this happened to anyone else? Does anyone know how they get in? Is this an osCommerce weakness or sever side? My hosts say it was probably done via hi-jacking a weak php script on my site (so they are saying it's an osCommerce issue) but they would say that. Any ideas most welcome.
Guest Posted January 10, 2005 Posted January 10, 2005 it appears to be the 'freebsd scalper worm' which came out in june of 2002, go to your admin/tools/server_info and post the version of php you are running. it is most likely a host problem, where they didnt keep things updated.
Guest Posted January 10, 2005 Posted January 10, 2005 also what version of apache is on your server? that should be listed on the page too.
goring_gap Posted January 10, 2005 Author Posted January 10, 2005 also what version of apache is on your server? that should be listed on the page too. <{POST_SNAPBACK}> Thanks for the reply. HTTP Server: Apache/1.3.28 (Unix) PHP Version: 4.3.10 (Zend: 1.3.0) and if relevant: FreeBSD 4.8-STABLE Does that all make sense??
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.