On Sun, Dec 14, 2008 at 1:38 AM, Christian Thiele apper@apper.de wrote:
Hi,
Am 14.12.2008, 01:03 Uhr, schrieb River Tarnell river@loreley.flyingparchment.org.uk:
this page is obsolete; PHP has been using FastCGI by default for the last few months. i removed the content of the page so it doesn't confuse people.
maybe you could scan the server for *.phpf files, because these are security risks now. If there are other people like me, who had *.phpf scripts and didn't change them, the source of these scripts is readable by everyone (including database passwords and so on) now.
It would of course be a good idea, but any PHP(f) file that is world readable and has passwords in it is inherently a security leak.
Bryan