Im was in the exact same situation as the poster. I manage a small group of Servers and client machines. Im only in the office for 3-4 hours a day. There was 3 poeple whom users were reporting the errors to. Unfortently there was no documentation of if we fixed the issue or no reporting to the other people whom should know. Spent a fternoon and wrote up a asp.net mssql database (ms only network) troubleticket system. Not only is it increased effecincy to the point i dont know how we did it before, I look like a a god.
For sure write your own, its really not that hard.
I belive that this has been taken to a point that is uncontrolable. Why must the modeI believe that this has been taken to a point that is uncontrollable. Why must the moderator's continue to let more stories on Microsoft Anti-spyware? Since this new ms app ahs been released there has been around 5 stories not including this one just about Microsoft Anti-spyware. Slashdot used to be my place of news and information; lately it has become the portal of miss-information and duplicate post. Recently I have seen more and more double triple and even quad stories on the exact same thing. Take just recently the article of the apple flash based iPod , a story was posted today with a link to the disassembly of the device. Well Slashdot readers on the 17th of this very month that link was in another story. This constant double to quad posting of stories has driven me to the point of not refreshing this page every hour at work, (yes I have a boring job). I know that if I go one day with out reading Slashdot that I have already read between 30%-50% of the articles already. If any high up moderators read this please do not take this as offense I find this site of great use every single day, I personally would just like to see the double posting to stop.
(END RANT)rators contun
ICDSOFT the hosting company doesnt give a crap
read below
A: Dec 22 00:50 Support 28: Hello,
We already dealt with this worm - the outbreak was yesterday and urgent actions were taken, to patch the faulty phpBB boards, to stop the worm attacks against the servers.
The worm exploits a bug in a PHPBB forum. Once it finds such a vulnerable version of this forum, it will inject a malicious script which will search for worldwritable files on the server and replace them with the "Defaced" message. It will also search on google for other exploitable PHPBB forums and try to infect them too.
The overwritten files were all with 666 or 777 permissions (worldwritable) and thus were overwritten.
Note that this is not our fault.
You need not use 777 or 666 permissions on our server anymore. We have started using SuExec on the server, which greatly improves the security and stability. This environment also executes scripts with the user credentials, instead of the Apache ones, so your scripts can access all your files and folders.
We can restore your site from our backups, dated 10 and 17 Dec. Please advise which backup we shall use.
Best Regards,
Support
A: Dec 22 00:58 Support 28: Hello,
The reason is not with the PHP, rather it is with a security flaw in the phpbb forums.
We have patched all the customers' phpbb forums, which is indeed not our duty, but we did it to stop the attacks against our servers.
Leaving a worldwritable file on your account is really against any security standards and anyone on the server could overwrite it any moment, one does not need a worm to do that. You cannot blame us for holes in your site's security that you left.
Your understanding on the issue will be appreciated.
We can restore your site from our backups, dated 10 and 17 Dec. Please advise which backup we shall use.
Best Regards,
Support
Slashdot Mirror
Im was in the exact same situation as the poster. I manage a small group of Servers and client machines. Im only in the office for 3-4 hours a day. There was 3 poeple whom users were reporting the errors to. Unfortently there was no documentation of if we fixed the issue or no reporting to the other people whom should know. Spent a fternoon and wrote up a asp .net mssql database (ms only network) troubleticket system. Not only is it increased effecincy to the point i dont know how we did it before, I look like a a god.
For sure write your own, its really not that hard.
I belive that this has been taken to a point that is uncontrolable. Why must the modeI believe that this has been taken to a point that is uncontrollable. Why must the moderator's continue to let more stories on Microsoft Anti-spyware? Since this new ms app ahs been released there has been around 5 stories not including this one just about Microsoft Anti-spyware. Slashdot used to be my place of news and information; lately it has become the portal of miss-information and duplicate post. Recently I have seen more and more double triple and even quad stories on the exact same thing. Take just recently the article of the apple flash based iPod , a story was posted today with a link to the disassembly of the device. Well Slashdot readers on the 17th of this very month that link was in another story. This constant double to quad posting of stories has driven me to the point of not refreshing this page every hour at work, (yes I have a boring job). I know that if I go one day with out reading Slashdot that I have already read between 30%-50% of the articles already. If any high up moderators read this please do not take this as offense I find this site of great use every single day, I personally would just like to see the double posting to stop. (END RANT)rators contun
ICDSOFT the hosting company doesnt give a crap read below A: Dec 22 00:50 Support 28: Hello, We already dealt with this worm - the outbreak was yesterday and urgent actions were taken, to patch the faulty phpBB boards, to stop the worm attacks against the servers. The worm exploits a bug in a PHPBB forum. Once it finds such a vulnerable version of this forum, it will inject a malicious script which will search for worldwritable files on the server and replace them with the "Defaced" message. It will also search on google for other exploitable PHPBB forums and try to infect them too. The overwritten files were all with 666 or 777 permissions (worldwritable) and thus were overwritten. Note that this is not our fault. You need not use 777 or 666 permissions on our server anymore. We have started using SuExec on the server, which greatly improves the security and stability. This environment also executes scripts with the user credentials, instead of the Apache ones, so your scripts can access all your files and folders. We can restore your site from our backups, dated 10 and 17 Dec. Please advise which backup we shall use. Best Regards, Support A: Dec 22 00:58 Support 28: Hello, The reason is not with the PHP, rather it is with a security flaw in the phpbb forums. We have patched all the customers' phpbb forums, which is indeed not our duty, but we did it to stop the attacks against our servers. Leaving a worldwritable file on your account is really against any security standards and anyone on the server could overwrite it any moment, one does not need a worm to do that. You cannot blame us for holes in your site's security that you left. Your understanding on the issue will be appreciated. We can restore your site from our backups, dated 10 and 17 Dec. Please advise which backup we shall use. Best Regards, Support