[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-users] PHP under POST attack

Subject: [cobalt-users] PHP under POST attack
From: "Tom Cameron" <tomcameron@xxxxxxxxxxxxxxx>
Date: Mon Jul 28 00:48:01 2003
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

Hi there,
Ive just noticed that one of my sites is being hit with POST requests about
3/second for about 6 hours per day.

At this stage there is no other sign of intrusion into the machine. It is a
Cobalt Raq 4 and Im using the PkgMaster
http://pkgmaster.com/packages/raq/4/#php PHP 4.1.2-3.

After reading around there is quite a bit of info about a POST vulnerability
in PHP in later versions - http://www.php.net/release_4_2_2.php.

Does anybody know if this PkgMaster version is vulnerable and if I should
upgrade to a later package. If I should upgrade, what versions and packages
do you recommend?

Thanks
Tom

______________________________________________________________________
Tom Cameron                                   PHONE: +61 (7) 3843-0516
Mooball.com Pty Ltd                            CELL: +61 (4) 1455-3212
PO Box 1158                                  FAX-AU: +61 (7) 3319-6074
Fortitude Valley                             FAX-US: +1 (801) 516-8937
Brisbane QLD                                    mailto:tom@xxxxxxxxxxx
Australia                         or mailto:tomcameron@xxxxxxxxxxxxxxx
Time Zone GMT+10                               http://corp.mooball.com

Follow-Ups:
- Re: [cobalt-users] PHP under POST attack
  - From: Steve Bassi

References:
- RE: [cobalt-users] how to auto-start mailscanner again
  - From: BSmith

Prev by Date: [cobalt-users] send one message at a time on Cobalt RaQ550
Next by Date: Re: [cobalt-users] PHP under POST attack
Previous by thread: RE: [cobalt-users] how to auto-start mailscanner again
Next by thread: Re: [cobalt-users] PHP under POST attack

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index