| Re: Shocking amount of PHP security holes? [message #171087 is a reply to message #171082] |
Fri, 24 December 2010 12:03   |
The Natural Philosoph
Messages: 993
Registered: September 2010
Karma:
|
Senior Member |
|
|
jimp(at)specsol(dot)spam(dot)sux(dot)com wrote:
> The Natural Philosopher <tnp(at)invalid(dot)invalid> wrote:
>
>> Indeed.My sites show persistent attempts to access something called
>> phpmyadmin.php, whatever that is..
>
> phpMyAdmin is a popular web based tool for MySQL administration and it is not
> part of PHP.
>
> Like any other admin tool, especially web based ones, if you install it and
> don't keep it secure and up to date, you reap what you sow.
>
> As for "persistent attempts", there are tools out there that will note such
> things and automatically block further attempts.
>
well yes, but since the attempts all fail, and I log them anyway what is
the problem?
> None of this of course has anything to do with PHP other than phpMyAdmin
> was written in PHP.
>
Merely that any live site on the net will be subjected to bots crawling
all over it looking for holes.
Some of which may try to exploit PHP weaknesses, some not.
>
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]