Gallery-abused as spammer ?

leiferikson Joined: 2003-05-22 Posts: 40	Posted: Tue, 2003-12-16 10:56
	Hello, I am not a keen unix and apache user, but I have found this in a newsgroup. A guy is writing about a spammerAttac on an gallery-Installation under Apache. Perhabs it is interesting for you, thou I don´t understand what he is exactly talking about. look here: http://www.securityfocus.com/guest/24043 I hope my machine is still clean ... greetings from germany, torsten
	XUser login Username: * Password: * Create new account Request new password
valiant Joined: 2003-01-04 Posts: 32509	Posted: Tue, 2003-12-16 17:20
	wow, thanks for the link. I hope this is limited to geeklog, but i guess they do such dynamic require_once everywhere. please fix it?!

h0bbel Joined: 2002-07-28 Posts: 13451	Posted: Tue, 2003-12-16 18:19
	valiant, the developers are aware of this, and yes, it's limited to the geeklogmod. I'll see if I can get one of the developers to make a more detailed response.

beckett Joined: 2002-08-16 Posts: 3474	Posted: Wed, 2003-12-17 15:10
	Hi there. Yes, the Gallery developers are all aware of this. This issue is limited to the Geeklog mod only which we do not write nor support. It seems that it was just that one instance. However, we've made the Geeklog mod folks aware of this and expect that they'll have the hole closed up right away. Since this only affects a very small subset of people using a "custom" product, we've decided not to post a notice on this website, deferring to the Geeklog folks. -Beckett ( )

valiant Joined: 2003-01-04 Posts: 32509	Posted: Wed, 2003-12-17 15:37
	ok, thanks

Gallery-abused as spammer ?

XUser login