Quote:
Originally Posted by Davy
Comus was fucking awesome back in the days. I used it for years. It was the best tgp script at the time that offered everything I needed. Cropped thumbnails for about 600,000+ galleries with it. Even had a spare license that I never used.
I no longer run that tgp, so the whole comus folder is chmodded to zero on my server. As far as I understand, the problem with comus was that the permissions that were always suggested by support ("just chmod everything to 777") invited the hackers in. I could be wrong, but I think you should be fine as long as the permissions are set right.
|
the problem with all hacks we had was with one or two files that had a problem, one of the hacks was on a file that was obsolete and coded out of it (the dependency of files on that one file was amazing) and the last hack was someone that found a way in thru the left side menu, which to my knowledge was chmod 644. Those were the real problems with comus.
The last hack was taken care off by removing the menu.php file completly, and moving a few files around to protected areas.
Right now comus uses basic authentication along with the normal login box.