|
Re: FudForum Hacked again and again... [message #38088 is a reply to message #38087] |
Tue, 17 July 2007 23:38 |
Ilia
Messages: 13241 Registered: January 2002
Karma: 0
|
Senior Member Administrator Core Developer |
|
|
On a non-secure PHP setup on a virtual host (without open_basedir) other users on the machine could modify the forum files, simply because they are owned by the web server user. Because they are created by the web server, subsequently any PHP script running on the server could modify the file.
FUDforum Core Developer
|
|
|
|
|