Search found 4 matches

by dsiembab
Tue Feb 10, 2009 2:11 am
Forum: [3.0/Olympus] Discussion
Topic: [Discussion] Downtime and Server Compromise
Replies: 353
Views: 245614

Re: [Discussion] Downtime and Server Compromise

https://samate.nist.gov/index.php/Web_Application_Vulnerability_Scanners#Security_Vulnerabilities http://www.owasp.org/index.php/Phoenix/Tools I am going to use some of these against phplist 2.10.8 and if none of them pick it up then hey you are all right and I am wrong. If any of these programs sh...
by dsiembab
Mon Feb 09, 2009 10:47 pm
Forum: [3.0/Olympus] Discussion
Topic: [Discussion] Downtime and Server Compromise
Replies: 353
Views: 245614

Re: [Discussion] Downtime and Server Compromise

@3di What I am trying to say is the exploit was always their. So day zero is an excuse for writing bad code? check this link out it might help you out understanding what I mean http://www.onlamp.com/pub/a/php/2003/03/20/php_security.html . Yeah 2003 so does that make the exploit day zero. I don't th...
by dsiembab
Mon Feb 09, 2009 7:45 pm
Forum: [3.0/Olympus] Discussion
Topic: [Discussion] Downtime and Server Compromise
Replies: 353
Views: 245614

Re: [Discussion] Downtime and Server Compromise

It was a 0-days exploits, remember that. Thanks for the info. Even though I already knew that appreciate it. A zero day exploit, how is that? it is only a zero day exploit when someone finds it and reports it. you don't have to have a bs in computer sciences to write a third party add-on or plugin....
by dsiembab
Mon Feb 09, 2009 5:59 pm
Forum: [3.0/Olympus] Discussion
Topic: [Discussion] Downtime and Server Compromise
Replies: 353
Views: 245614

Re: [Discussion] Downtime and Server Compromise

It just happens that I was going to use phpbb for my site, I have used it in the past and do understand that the exploit was from a third party extension. But some people do not and I think that this will hurt your community, well not the established community but anyone new to web development looki...