Thread: Contact Form being Hi-jacked - HELP!
View Single Post
  #4 (permalink)  
Old 09-12-2005, 12:51 PM
nottheusual1 nottheusual1 is offline
WebProWorld Pro
  

Join Date: Jun 2004
Location: The Barrens of NE Ohio
Posts: 234
nottheusual1 RepRank 0
Default
Well.... At least from that potential vulnerability.

You should also do a few other things, like maybe running php_suexec, but not every machine is the same. If you are running certain software, some easy fixes will break other things. As an example, you can't run MMCache, certain image gallery programs, etc., with php_suexec because it forces PHP to run as a CGI binary.

This would be a good discussion to have with one of the more knowledgeable admins at your host or NOC. Ask about basic stuff like basic server hardening and making sure that visitors can't inject things into your PHP forms and results. This is pretty 101 stuff from the admin end, so it shouldn't be a hard thing for them to help out with.
__________________
:not_the_usual1
[you decide]
________________
All in my opinion, which, when combined carefully with a $1 bill, gets you a cup of coffee at the corner store.
Reply With Quote