[pmwiki-users] pmwiki exploit
Robin Sheat
robin at kallisti.net.nz
Tue Sep 5 07:38:59 CDT 2006
On Wednesday 06 September 2006 00:17, Nils Knappmeier wrote:
> I verified it, and it really works.
Of course, most people should have register_globals=off in their php.ini file,
which will prevent this happening at all. If you don't, now is a good time to
check if you can happily run with it off. Many PHP application exploits
require it to be 'on' to be effective.
--
Robin <robin at kallisti.net.nz> JabberID: <eythian at jabber.kallisti.net.nz>
Hostes alienigeni me abduxerunt. Qui annus est?
PGP Key 0xA99CEB6D = 5957 6D23 8B16 EFAB FEF8 7175 14D3 6485 A99C EB6D
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: not available
Url : /pipermail/pmwiki-users/attachments/20060906/af905582/attachment.bin
More information about the pmwiki-users
mailing list