[Nottingham] forums.planetnottslug.org
Graeme Fowler
graeme at graemef.net
Wed Oct 26 13:02:37 BST 2005
On Wed 26 Oct 2005 12:29:14 BST , Rob Andrews <rob at impure.org.uk> wrote:
> Choice is good
<snip>
Quite.
However, having your webserver/site defaced or compromised is not.
phpBB is a widely-used moving target in terms of passthru/sql
injection/arbitrary code execution holes, so please ensure that it is
kept up to date. Anyone with admin access to the site or server should
ideally make sure you get subscribed to the relevant "announce" lists
at the very least, and keep on top of updates.
It's a very short time from exploit announcement (and corresponding
patch release, normally) to site defacement, in my experience.
Graeme (speaking with his abuse handling hat on)
More information about the Nottingham
mailing list