Re: [bitfolk] IMPORTANT: You need to renumber the IP address…

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMG. Miliotis at <-
MMMMike Zanker at ->

Reply to this message
Author: Andy Smith
Date:  
Subject: Re: [bitfolk] IMPORTANT: You need to renumber the IP address(es)of your BitFolk VPS
WIAMZ3BJUZpZos7kFAYloAOvRuBDqzCDB
    a8vFRF05iEK/KeVCMtpetZtH6UJLF6GP87bN7d+2IcBfGEh5wvgPBZCdZ1qGBSjRy/lz
    UzjA==
Received: by 10.50.104.133 with SMTP id ge5mr350919igb.21.1336577771901; Wed,
    09 May 2012 08:36:11 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.231.155.68 with HTTP; Wed, 9 May 2012 08:35:50 -0700 (PDT)
X-Originating-IP: [206.15.84.130]
In-Reply-To: <CAAiW_Gms7vhofCWzrq0-1tty=xu6r9S58Hx6YWUVTkKDB1CqWQ@???>
References: <20120509142238.GR12360@???>
    <CAAiW_Gms7vhofCWzrq0-1tty=xu6r9S58Hx6YWUVTkKDB1CqWQ@???>
From: Alan Pope <alan@???>
Date: Wed, 9 May 2012 08:35:50 -0700
Message-ID: <CAJQXyccwd_MJyWBpUt2v=1+PFnkDENs0rKzw7NtyKxt16jMZxg@???>
To: Murray Crane <murray.crane@???>
Content-Type: text/plain; charset=ISO-8859-1
X-Gm-Message-State: ALoCoQlM5BW5qUSMxSoPFRZ9ysMH5MeSWuSzjJVX+RW6+B+SAIKj3U9r2d5Fz9c9VEZUPV4TxsBC
X-Virus-Scanner: Scanned by ClamAV on mail.bitfolk.com at Wed,
    09 May 2012 15:36:18 +0000
X-SA-Exim-Connect-IP: 209.85.212.180
X-SA-Exim-Mail-From: alan@???
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
    spamd0.lon.bitfolk.com
X-Spam-Level: 
X-Spam-ASN: AS15169 209.85.212.0/24
X-Spam-Status: No, score=-0.7 required=5.0 tests=RCVD_IN_DNSWL_LOW
    shortcircuit=no autolearn=disabled version=3.3.1
X-Spam-Report: * -0.7 RCVD_IN_DNSWL_LOW RBL: Sender listed at
    http://www.dnswl.org/, low *      trust
    *      [209.85.212.180 listed in list.dnswl.org]
X-SA-Exim-Version: 4.2.1 (built Mon, 22 Mar 2010 06:51:10 +0000)
X-SA-Exim-Scanned: Yes (on mail.bitfolk.com)
Cc: users@???
Subject: Re: [bitfolk] PHP-CGI exploit probes seen - please make sure your
 VPS is secured against this
X-BeenThere: users@???
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Users of BitFolk hosting <users.lists.bitfolk.com>
List-Unsubscribe: <https://lists.bitfolk.com/mailman/options/users>,
    <mailto:users-request@lists.bitfolk.com?subject=unsubscribe>
List-Archive: <http://lists.bitfolk.com/lurker/list/users.html>
List-Post: <mailto:users@lists.bitfolk.com>
List-Help: <mailto:users-request@lists.bitfolk.com?subject=help>
List-Subscribe: <https://lists.bitfolk.com/mailman/listinfo/users>,
    <mailto:users-request@lists.bitfolk.com?subject=subscribe>
X-List-Received-Date: Wed, 09 May 2012 15:36:19 -0000


On 9 May 2012 07:56, Murray Crane <murray.crane@???> wrote:
> I'm running latest WP on Ubuntu LTS (10.04) using PHP5-CGI and lighttpd. I
> know full well that my PHP5 will be vulnerable (v5.3.2, damn you Ubuntu;
> CATCH UP FOR F**KS SAKE!!!), but I don't know how to go about securing it in
> lighty (if I even need to). I do know that if I point a browser at
> "index.php?-s", I get the front page of my blog back (as if I had left the
> "?-s" off) and not anything that would scream "VULNERABLE!!!" at me.
>

You sure about Ubuntu not putting an update out?

https://launchpad.net/ubuntu/+source/php5/5.3.2-1ubuntu4.15 suggests otherwise.

Announce went out some days back, and the new packages were already availab
This message was posted to the following mailing lists:
users
Mailing List Info | Nearby Messages		<-Re: [bitfolk] T-DOSERe: [bitfolk] T-DOSE->
Bitfolk Mailing List Archive administrated by List AdminLurker (version 2.3)