Quote:
Originally Posted by beta-tester
Hmm.. do you have mod_security installed on your apache? Also, do you know which comus files are directly hit with this infection? Meaning, which files you first noticed that had malicious code in?
I am not playing with this, but i want to make sure comus is really vulnerable.
|
from what i gathered, menu.php in the admin dir gets attacked. Since i run 100s of installations it would be mad work to get them all switched in a short time span, so i worked around it:
- Delete menu.php from the admin dir
- htpasswd protected the admin dir
i noticed lots of peeps not affected they all had their admin dir htpasswd protected.
regards,
Ed