Conversation
Notices
-
Blackhats, aren't they hackers or something. That doesn't sound very good.
Wednesday, 03-Oct-12 18:52:31 UTC from web-
@fluttershycanhardlyfly Yes, yes they are. Thank God I just installed a bandwidth monitor and noticed it really quickly after it started. This is kinda scary, but only wants me to go into network security even more.
-
@omni Quick Googles seem that it targets versions of PMA that are vulnerable to a config exploit. :p
-
@minti What's PMA?
-
@omni PHPMyAdmin.
-
@omni What @ceruleanspark said.
-
@ceruleanspark Oh, crap, I'm actually running that but not using it... Let's hope my version is safe...
-
@omni scripts/setup.php is the entry point of the exploit and config/config.inc.php is the file created and used. If both of those exist, rename them. :p
-
@minti At least, that seems to be the case
-
@minti Where would those normally be located? I had "config.inc.php" in etc/webapps/phpmyadmin and renamed it, but I couldn't find it in a "config" folder, and I couldn't find the setup.php at all. I couldn't find any folders, to be more precise.
-
@omni Would be in /webapps/phpmyadmin/scripts/setup.php xD The config.inc.php in the root should stay there. Your best bet would be to just rename the entire phpmyadmin folder to "mylittleponiesfartrainbows" or something stupid like that. XD
-
@minti I have no subfolders in the phpmyadmin directory, but I'll be renaming it anyway, just to be sure.
-
