One of my friends has been attacked today due to lack
of security on php.ini and for an exploit on phpbb forum.
If you are running phpbb forum be sure to delete install.php ,
and if you are on a dedicated server be sure to turn off
allow_url_fopen and register_globals on your /etc/php.ini.
If you are on a shared server you could suggest your host
to turn off allow_url_fopen and register_globals
on your /etc/php.ini.
hope this helps.
of security on php.ini and for an exploit on phpbb forum.
If you are running phpbb forum be sure to delete install.php ,
and if you are on a dedicated server be sure to turn off
allow_url_fopen and register_globals on your /etc/php.ini.
If you are on a shared server you could suggest your host
to turn off allow_url_fopen and register_globals
on your /etc/php.ini.
hope this helps.
