Quote:
Originally Posted by Blackcrow
The problem is NATS and ElevatedX both use eval so it cant be disabled for most webmasters. The best I can tell this hacker has 2 modes of operation; he either breaks into the nats admin and uses the templates (or upload documents) to inject code or he uses outdated versions of myphpadmin. You should have IP access turned on for NATS and IP restriction on your myphpadmin install.
|
The presence of Eval is due to using Smarty templates. Most of the hacking incidents we've seen in the past 6 years have occurred when someone's servers were wide open and no IP restriction was in place - or when a large number of people from an organization had access to a server and/or admin panels using the same login credentials.
IP restricting access on multiple levels including access to software admin panels is something everyone should be doing.
AJ