July 10th, 2006, 21:31
|
#1 |
|
Administrator
 Join Date: Aug 2005
Location: Victoria, Australia
Posts: 908
 |
3PD components being targeted
Lately a lot of mambo sites have been getting hacked, with configuration.php files being overwritten and other unfortunate attacks. Hackers seem to be targeting third party components.
If you are using any components that do not come bundled with mambo then it is advised to look in the php files for that component and make sure that it contains Code:
/** ensure this file is being included by a parent file and stop direct linking */ defined( '_VALID_MOS' ) or die( 'Direct Access to this location is not allowed.' ); Register globals should also be turned off if possible. Mambo has the ability to emulate register globals on if necessary. Regular backups are a great idea and will help repairing any damage if your site is unfortunate enough to be targeted.
__________________
Support Mambo by making a donation through paypal. |
|
|
 |
«
Previous Thread
|
Next Thread
»
| Thread Tools | Search this Thread |
| Display Modes | |
Linear Mode
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| 3PD components being targeted | mambomod | Security & Performance | 0 | July 10th, 2006 21:20 |
| Targeted user access for sections, categories, components | lpkb | General Questions | 2 | September 1st, 2005 20:58 |
| Trash manager support for 3PD components | Jinx | 5.0 | 7 | October 12th, 2004 05:42 |
| Super Admin and Admin | lewisteo | Wishlist & Feature Requests | 22 | March 11th, 2004 00:24 |
All times are GMT -7. The time now is 04:43.