My CS PHP-Nuke site was hacked while I sat and played Counter-Strike for a while on Sunday morning … I think I started playing around 4am and stopped about 8am or something … I went to my CS Site and there it was … My latest story edited with HACKED! and some other non-sensical text and images … I had heard of a security bug in PHP-Nuke, so I went to a site and got the security patches … Applied them and removed the hackers edits and insert as an admin on the PHP-Nuke site … I then got hold of this script that would analyze the installation … I found that another bug was present that would allow people to download any file on the server … I removed that … Another thing it told me that my PHP version was a vulnerability … So I went looking for how to upgrade PHP on my FreeBSD server …
I went to FreeBSD.Org … PHP.Net … but nowhere was there something that told me how to upgrade the mod_php4 installation … I didn’t want to delete the install and install the latest cause I didn’t want my config files and stuff to change … I eventually went to an IRC channel #freebsdhelp and was aided by the people in that room … There must have been 100 members in there …
Anyway, so I cvsup my ports collection, then create a database of installed ports, then do a portupgrade … This compiles from source all the latest releases of the ports I’m using … This took a little while, but I restarted the system (system restart without losing power or uptime) and when I came up immediately there was a problem with MySQL … I had moved the location of the default databases as they were originally stored on /var which is a smaller partition than others … So, edited that and all was well … Then the Forums on my CS Site wouldn’t work … In some cases, crashing the IE browser I was using when trying to access it …
I messaged in several forums about my problems and had to go to sleep .. I was very tired … I figured in the meantime maybe I would get some answers … The only answer I got was from someone who mis-interpreted my post … Oh well … So I did some more searching and one thing that sounded possible I tried and it fixed the forums straight away … I turned off gzip compression in the forums … I don’t know if the port upgrade made it incompatible or there was a failure in its installation …
On the plus, I have all the latest ports … I was able to compile PHP with GD support so I have the little security image on the PHP-Nuke site … We’ll see how it goes from here …