Icy Phoenix

Hello there i have some security issues in my site....

Somebody is able to upload a file named a.php in my public_html folder an then executes it...
Then Thusands of mails are being sent from my mailserver

I' attaching the file...

How can i rescue myself from him?

In the folder i found this script only the owner had write and execute permissions...

Please help me i can't find a solution

Thanks a lot!

php.ini register_globals = Off

or

new .htaccess disables register_globals

thanks a lot diffus...is this the only thing i have to change?

borbo wrote: [View Post]

thanks a lot diffus...is this the only thing i have to change?

delete a.php file :D

where is the php.ini located?

ps. I think that its a file in /etc/apache...or something in a linux box :shock:

borbo wrote: [View Post]

where is the php.ini located?

ps. I think that its a file in /etc/apache...or something in a linux box :shock:

yes it is in server.if you cannot to edit it

you can apply new patch from here http://www.icyphoenix.com/dload.php?action=file&file_id=6

I think i ve applied all patces exchept htaccess...

I'm uploading htaccess now...

Is there any way to find if my site is vulnerable ?

I think i ve applied all patces exchept htaccess...

I'm uploading htaccess now...

Is there any way to find if my site is vulnerable ?

borbo wrote: [View Post]

I think i ve applied all patces exchept htaccess...

I'm uploading htaccess now...

Is there any way to find if my site is vulnerable ?

version 058a is secure

read http://www.phpBBXS.eu/viewtopic.php?t=461