Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Pages: [1]   Go Down

Author Topic: A complete list of all files in CPG?  (Read 5174 times)

0 Members and 1 Guest are viewing this topic.

Zaitzev

  • Coppermine newbie
  • Offline Offline
  • Posts: 10
A complete list of all files in CPG?
« on: May 05, 2006, 11:14:50 pm »

Hi.

Out of curiousity and concern, I wonder what files are included in the CPG-distros? That is, what files except the ones in the zip archive are being created upon installation, modification or user input (This does not mean the images they upload..).

The reason I ask, is because of a recent attempt to make my gallery site kneel to the ground with some lame attacks, using uploaded php-files etc. Yes, I have a "public uploads" folder where everyone can upload images, which needs admin-moderation to be published. However, someone has uploaded a bunch of archive-files AND a few other files, "exploiting" CPG and the rest of the site.

This came to my attention when my ISP contacted me regarding this issue. They also closed down my site temporary due to these "attacks".
I browsed every single folder in my gallery-structure, where I found a bunch of malicious files under the /albums/userpics catalog (zip, php etc). I deleted those and the corresponding folders. In the /userpics/ directory, there is a file named .httpd - I am not sure if this is an include in the gallery or if it's a "bad file". Anyone?

I will be relieved when I can rest assure that I know the complete file structure of the CPG..

Thanks in advance!
Logged

Nibbler

  • Guest
Re: A complete list of all files in CPG?
« Reply #1 on: May 05, 2006, 11:19:15 pm »

Download Coppermine and take a look at the included files. The files install.lock and config.inc.php are created after installation. Take a look at any suspicious files with a text editor and make backups before you delete anything. .httpd is not a part of Coppermine.
Logged
Pages: [1]   Go Up
 

Page created in 0.034 seconds with 20 queries.