Slashdot Mirror

← Back to Stories (view on slashdot.org)

phpBB Forum Down After Defacement

Posted by Zonk on Tuesday February 8, 2005 @07:13AM

kv9 writes "The phpBB forum has been closed down after the host was cracked into, apparently because of an AWStats hole. Several blogs have been attacked using the same method. Commentary on Netcraft, The Reg and SecurityFocus"

3 of 49 comments (clear)

Min score:

Reason:

Sort:

Not phpBB -- Just their server. by Ahnteis · 2005-02-08 07:22 · Score: 4, Informative

It's sad that most sites are posting this with a headline that seems to indicate that phpBB is the problem. The SERVER was hacked through OTHER software, not phpBB. (I know I was worried about my sites until I read the article.)
Re:Meanwhile by isn't+my+name · 2005-02-08 07:24 · Score: 5, Informative

Perl forum still up and running. Conclusion? Obvious.

It says they write more careful--or less widespread--perl.

The awstats exploit that was used here makes use of poorly written perl that failed to validate user input. Of course, had you read the article, you would know that.
Re:Meanwhile by wizbit · 2005-02-08 07:41 · Score: 3, Insightful

It's not a buffer overflow, it's poor use of the open command in perl and hideously bad security practice to allow that command's arguments to a) contain practically any arbitrary value, and furthermore b) be passed from any browser that can find the script location. But this is why we chroot jail CGI scripts and avoid stupid use of system calls.