News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHP.net:
Security Notice (wiki.php.net)
March 23, 2011 @ 10:43:05

On PHP.net there's a quick security advisory for those that didn't see the news - the wiki.php.net machine was compromised but has been wiped and all accounts reset and requiring a password reset.

The wiki.php.net box was compromised and the attackers were able to collect wiki account credentials. No other machines in the php.net infrastructure appear to have been affected. Our biggest concern is, of course, the integrity of our source code. We did an extensive code audit and looked at every commit since 5.3.5 to make sure that no stolen accounts were used to inject anything malicious. Nothing was found. The compromised machine has been wiped and we are forcing a password change for all svn accounts.

The issue was caused by a combination of a problem with the wiki software and a Linux root exploit. The Register has additional comments about the issue and outage.

0 comments voice your opinion now!
security wiki compromised linux root exploit bug svn password


blog comments powered by Disqus

Similar Posts

Zend Developer Zone: The ZendCon Sessions Episode 1:The State of PHP Security

Andi Gutmans: Zend Server 6 is launched and available on the Amazon Web Services (AWS) Marketplace

Pierre-Alain Joye's Blog: htscanner 0.6.1

Chris Shiflett's Blog: Character Encoding and XSS

Noupe.com: PHP Security: Fortifying Your Website - Power Tips, Tools & How to's


Community Events

Don't see your event here?
Let us know!


language opinion unittest podcast laravel5 voicesoftheelephpant version library api extension php7 interview community series introduction laravel release development video framework

All content copyright, 2015 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework