06-23-2004, 05:36 PM
|
|
Web Hosting Guru
|
|
Join Date: Oct 2002
Posts: 281
|
|
http://www.php-nuke.org
is phpnuke really a risk for a hoster?
__________________
Real name: Tar Mkdir, consort of Dir Rar
Working for: Imperial Klingon Vine Impex
Note: No, we do not beam vine! Don't offend the Empire with such requests!
|
06-23-2004, 05:54 PM
|
|
Disabled
|
|
Join Date: May 2004
Posts: 26
|
|
well there were probley usxsing a old unpathced version, but it is pretty risky, i was once dosed by a sting in the phpnuke modlule,there always bugs being discoverd
|
06-23-2004, 05:58 PM
|
|
Web Hosting Guru
|
|
Join Date: Oct 2002
Posts: 281
|
|
sounds like very well known portals are more at risk than others. lets see xoops 
__________________
Real name: Tar Mkdir, consort of Dir Rar
Working for: Imperial Klingon Vine Impex
Note: No, we do not beam vine! Don't offend the Empire with such requests!
|
06-23-2004, 05:58 PM
|
|
Web Hosting Master
|
|
Join Date: Oct 2003
Location: Georgetown, Ontario
Posts: 1,761
|
|
__________________
·· Repeat after me... ProSupport is the best... Prosupport is... ··
ProSupport Host Support System - OUT NOW! Grab a copy yourself and see what the hype is about!
VertiHost Inc. - We run a quality business. Do you?
|
06-23-2004, 06:07 PM
|
|
Disabled
|
|
Join Date: May 2004
Posts: 26
|
|
plone is awsome (plone.org)
|
06-23-2004, 06:15 PM
|
|
Web Hosting Master
|
|
Join Date: May 2003
Posts: 598
|
|
Postnuke 1, PHPNuke 0
 I don't use either one of them though.
|
06-23-2004, 06:35 PM
|
|
Disabled
|
|
Join Date: Jun 2004
Posts: 19
|
|
|
06-23-2004, 06:39 PM
|
|
Web Hosting Master
|
|
Join Date: Mar 2003
Location: Duluth MN
Posts: 3,865
|
|
I doubt it... http://www.phpnuke.org/ is the official phpnuke site...
|
06-23-2004, 08:13 PM
|
|
Web Hosting Evangelist
|
|
Join Date: Feb 2004
Posts: 509
|
|
Looks like that php nuke site was hacked though, or may I say "nuked"? Muhah ;p
|
06-23-2004, 08:20 PM
|
|
Web Hosting Master
|
|
Join Date: Mar 2003
Location: Atlanta, GA
Posts: 3,419
|
|
|
06-23-2004, 08:37 PM
|
|
Web Hosting Guru
|
|
Join Date: Oct 2002
Location: York, United Kingdom
Posts: 260
|
|
Use Mambo very few holes, PHP Nuke is full of them, search for exploits in PHP-Nuke and you should see the risks.
|
06-23-2004, 08:47 PM
|
|
<?require_once("life")?>
|
|
Join Date: Sep 2002
Location: inside your network
Posts: 9,548
|
|
As others have said:
php-nuke is full of risks and vulnerabilities. It's quite scary actually. I've been hit myself with a couple of attempts. It's not really the "version" but the fact that this is actually some pretty damn scary code. I did find Sentinel to provide a bit more security for phpnuke (I run a game that is rather embedded into it, so not using it isn't an option currently).
As someone else mentioned, phpnuke.org is the main site, not php-nuke.
__________________
Linux Tech Networks Reliable, Affordable Linux administration and monitoring since 2002
|
| Thread Tools |
Search this Thread |
|
|
|
| Display Modes |
 Linear Mode
|
| Postbit Selector |
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
|
|
| Login: |
|
|
| Advertisement: |
|
|
| Web Hosting News: |
|
|
|
