SECURITY ALERT [Solved]
Please remove script
Solution has been fully integratedlinks/trackback.php manually from your serverSolution Manager: Bernard
Issue description
We have been reported one site running YACS 7.2 hacked. The root case analysis has shown repeated attacks on the aforementioned script. Flaws identified here have been fixed in the archive 7.3alpha19 released on March-20.
If you can't or don't want to move to this new version, the simplest way to protect your server is to manually remove the script
A safer version will be automatically re-installed during a next update to 7.3, so you won't have to do something specific on this after the removal.
If you can't or don't want to move to this new version, the simplest way to protect your server is to manually remove the script
links/trackback.php with the limited drawback of not accepting trackback requests for some time.A safer version will be automatically re-installed during a next update to 7.3, so you won't have to do something specific on this after the removal.
Comments
NickR from West Yorkshire, UK 332 posts |
Thanks for the info. Nick. ----- Nick |
Rate this page
Posted by Bernard on Mar. 20 2007, page edited by Bernard on June 14, (popular)
