We continue to receive submission on SSH brute force scan. From one of the submission received, the source is a public website and the the phpinfo() details can be viewed. This is a bad move as you are allowing others to see, not only the php configuration, but also some of the softwares and their version installed on the system. This file should be removed when you have verified the php is installed properly. We have informed the site to investigate.
Upgrade Mozilla Products
Mozilla has released new version for its products against the libpng vulnerability. If you are using Mozilla products, do upgrade them over the weekend:
To know more details on libpng vulnerability, please refer to:
NIST has published a draft guidelines on PDA Forensics. Over the weekend, you may want to take a look:
Aug 8th 2004
1 decade ago