[nycphp-talk] Issues with server getting hacked
Randal Rust
randalrust at gmail.com
Fri Sep 11 15:29:38 EDT 2009
On Fri, Sep 11, 2009 at 3:26 PM, Chris Snyder <chsnyder at gmail.com> wrote:
>> old version of CakePHP that we inherited.
> Heh. You mean the version you can't upgrade because it would break everything?
Of course:)
> Maybe it's time to see if you can put a Web Application Firewall in
> front of the box or install mod_security or something along those
> lines.
Good thought.
> The answer to your original question (pinpointing the upload) is to
> grep through the Apache logs for suspicious POSTs.
That's what I was thinking actually. There has to be something
*somewhere* that would give me an indication of where the issue lies.
--
Randal Rust
R.Squared Communications
www.r2communications.com
614-370-0036
More information about the talk
mailing list