Fight the automated spam - protect your miniBB-forums,
getting the Captcha addon! Click here to read more.		Captcha Addon for miniBB
miniBB ®
 
miniBB Community Forum
 | Forums | File Bank | Sign Up | Reply | Search | Statistics | Manual |
How To miniBB Community Forum / How To /

Vulnerable folder report upon forums installation
 
jorge
Forums Member
#1 | Posted: 3 Jun 2008 22:28
Reply 
In my installation

Folder's protection

Vulnerable. In your current forums folder, where are you are going to install the forums, PHP script is able to create, delete and modify files. We recommend to set permissions for generic forums folder as read-only.

where and how modify this problem.

Sincerely,
Paul
CEO
#2 | Posted: 4 Jun 2008 04:27
Reply 
It just means any script is allowed to create and modify files under this folder without setting a special permission. Since many hacks are related to modify/delete files, this could be dangerous.

If you have 'register_globals' set to OFF, you may skip this warning and install miniBB usual way, I think. Because all hacks are leading from this vulnerable setting.

But if you want to be completely safe, try to contact your provider and ask them about this problem. It's related to some kind of special configuration on the server; OR maybe it's a Windows-based server, where this error naturally should always appear and you don't need to pay attention to it then.
 
Your Reply
» Username  » Password 
You are welcome to post anonymously by entering a nickname with no password (if that nickname has not been taken by another member) or by leaving both fields empty. If you have a forums membership account, you can also sign in from this page without posting a message, or sign in and post at once.

Before posting, make sure your message is compliant with our forum posting rules. If not, it may be locked or deleted with no explanation.

 
Online now: Guests - 4
Members - 0 		Most users ever online: 214 [11 Jan 2009 10:23]
Guests - 214 / Members - 0

Forums are powered by miniBB®