From owner-freebsd-security@FreeBSD.ORG  Tue Dec 28 02:18:33 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9B4BB16A4CE
	for <freebsd-security@freebsd.org>;
	Tue, 28 Dec 2004 02:18:33 +0000 (GMT)
Received: from mail.vicor-nb.com (bigwoop.vicor-nb.com [208.206.78.2])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 36F6B43D49
	for <freebsd-security@freebsd.org>;
	Tue, 28 Dec 2004 02:18:31 +0000 (GMT)
	(envelope-from julian@elischer.org)
Received: from elischer.org (julian.vicor-nb.com [208.206.78.97])
	by mail.vicor-nb.com (Postfix) with ESMTP
	id 16B917A425; Mon, 27 Dec 2004 18:18:31 -0800 (PST)
Message-ID: <41D0C276.7080100@elischer.org>
Date: Mon, 27 Dec 2004 18:18:30 -0800
From: Julian Elischer <julian@elischer.org>
User-Agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.3.1) Gecko/20030516
X-Accept-Language: en, hu
MIME-Version: 1.0
To: Jerry Bell <jerry@syslog.org>
References: <34657.24.230.37.14.1104187002.squirrel@24.230.37.14>
	<2990.24.98.86.57.1104197295.squirrel@24.98.86.57>
In-Reply-To: <2990.24.98.86.57.1104197295.squirrel@24.98.86.57>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Tue, 28 Dec 2004 14:37:54 +0000
cc: freebsd-security@freebsd.org
cc: estover@nativenerds.com
Subject: Re: Found security expliot in port phpBB 2.0.8  FreeBSD4.10
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Dec 2004 02:18:33 -0000



Jerry Bell wrote:

>The update for phpbb came out a while ago, and it looks like the ports
>were updated on 11/25/2004.  Have you tried updating the ports?  I think
>this is already addressed.
>
>On a side note, I'm suprised you didn't get hit by the worm (unless it
>happened before the worm came out).  There is a new worm out now that
>attacks some weak php programming, though it's not very widespread.  See
>http://www.syslog.org/Article10.phtml for a little more detail.
>
>I don't know if it's a worm or not, but I'm seeing people trying to attack
>my site pretty frequently lately.
>
>Best regards & happy holidays,
>
>Jerry
>http://www.syslog.org
>

might be a good idea if we "urged" users to update their phpbb  a bit 
more vocally.