I have mentioned before this server runs on old hardware and Fedora Core 14. That’s a 9-year-old OS which in terms of software, it’s like 3 times its life expectancy at this point. Fedora is almost on version 31 now. Keeping old OS around can be real hassle, but then again so is updating and — Continue reading »
Building New PHP 7.3 on Old Fedora 14 Linux
PHP - echo'ing String Fragments Using Periods Vs. Commas
One of the mysteries of PHP's echo function is the supposed equal treatment of multiple strings separated by periods (.) vs. those separated by commas (,). Actually echo is a language construct, but I digress. In both cases echo appears to concatenate the string fragments and output the resulting string. In actuality, the period is — Continue reading »
Wordpress Base64 Hack or PHP-CGI Hack? part III
After being hit by the Wordpress base64 hack twice within a couple of weeks, it finally dawned me that the PHP CGI flaw was the culprit. The attack robots (a la Metasploit) use the knowledge of PGP CGI flaw together with the well-known scripts of popular products (Wordpress, Joomla, Drupal, etc.) to penetrate sites and — Continue reading »
Wordpress Base64 Hack or PHP-CGI Hack? part II
Wordpress Base64 Hack or PHP-CGI Hack?