|
-
Feb 28th, 2002, 08:09 AM
#1
Thread Starter
Black Cat
Major Security Hole in PHP File Upload
Josh
Get these: Mozilla Opera OpenBSD
I have books for sale: "MCSD in a Nutshell" and "VB Distributed Exam Cram" - PM me for details. Will also trade for a decent ATX Pentium 2 MB/CPU/RAM combo.
-
Feb 28th, 2002, 09:11 AM
#2
-
Feb 28th, 2002, 12:40 PM
#3
Addicted Member
Thanks for the heads up. I'm in-experienced with the setting up of new versions of PHP and patches and stuff. I went to their website and they didn't have any Download's for Red Hat Linux servers. Does anybody know where to get that patch at?
-
Feb 28th, 2002, 01:02 PM
#4
as far as I know, Linux is Linux is Linux. doesn't matter if it is redhat or mandrake it should still be one php file.
-
Feb 28th, 2002, 01:04 PM
#5
Thread Starter
Black Cat
Red Hat should post an RPM on their site, or use the "up2date" tool that comes with their distro. Else, get the PHP source code and compile it yourself.
Josh
Get these: Mozilla Opera OpenBSD
I have books for sale: "MCSD in a Nutshell" and "VB Distributed Exam Cram" - PM me for details. Will also trade for a decent ATX Pentium 2 MB/CPU/RAM combo.
-
Feb 28th, 2002, 01:53 PM
#6
Addicted Member
hmm... I'm doing the second option as we speak.. Trying to recompile it. I untarred it and did the make install thing. Anybody know what else needs to be done?
-
Feb 28th, 2002, 06:49 PM
#7
Member
Erm, is it just me or is there no Win32 download for 4.1.2?
-
Feb 28th, 2002, 07:16 PM
#8
not you. they usually come out with win32 about a month or 2 later. as far as I know they still don't have 4.11 as win32.
-
Feb 28th, 2002, 07:22 PM
#9
Member
Bummer, so I just have a big ol' hole until then?
-
Feb 28th, 2002, 10:07 PM
#10
Fanatic Member
do u have to change any setting thiny's in PHP to enable file uploads ?? cos i cant seem to get it to work
-
Mar 1st, 2002, 10:14 AM
#11
well if your code is correct 
then you shouldn't have to do anything. unless your isp has disabled it.
-
Mar 2nd, 2002, 10:23 AM
#12
Fanatic Member
Originally posted by scoutt
well if your code is correct 
then you shouldn't have to do anything. unless your isp has disabled it.
lol, i host everything myself (ASP, PHP, MySQL) on my one and only ****box computer. (P166, 32MB, 4GB)
anyway, when i have time to give the code another try i'll consult the forum. thanx scoutt
-
Mar 4th, 2002, 11:12 AM
#13
not to worry fillby if you have php4 as the vulnerabilites only affect Linux/solaris. There is an affect for windows in php 3 though.
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|