Quote:
Originally Posted by Nurgle
unbelievable that this script still has so many fucking holes in it and that Tony never bothered to properly lock down this script after so many attacks over the years
anyone who uses comus still needs their head checked
|
so i need to get my head checked out, noted it down so i can make an appointment with my doctor later today...
tony pushed the first beta upgrade out last night when i was sleeping so my post is a bit late (i tend to sleep at odd hours)
Beta will kill menu.php from the ct folder.
it will copy htaccess htpasswd from your ept install (if present) to the ct admin dir and the templates folder to make em more secure.
these are only temp fixes atm.
easiest way to make ya secure, is to remove menu.php for now and htpasswd the admin dir.
Tony is resting atm after coding for over 18hours and will be going further into the code once he gets up again.