IMPORTANT. Dolphin 6.1.3 Security Patch Release
VictorT
posted 17th of July 2008
in
.
78 comments.
The Dolphin 6.1.3 Security patch is released. This patch fixes vulnerabilities when the PHP setting "register_globals" is on.
Hence, it covers much code re-work overall. This patch should be applied only to 6.1.2 (no earlier versions) to move to 6.1.3 using these instructions. You are recommended to apply it, even though you have applied solutions provided by other members here, as this is more comprehensive.
For those who are taking steps by upgrading from earlier versions up to the latest release above, please make sure that "register_globals" is set to OFF on your host.
Below is the legacy version of the Boonex site, maintained for Dolphin.Pro 7.x support.
The new Dolphin solution is powered by UNA Community Management System.
The new Dolphin solution is powered by UNA Community Management System.
Or maybe i dont have to use this, cause my registerd_globals are setted to off, this means i dont need it, right?
Cheers,
Jerry
just to clarify, although this patch makes it safer for dolphin site on hosts with register globals on. boonex still recommend, (as it is much safer all round) to choose a host with register globals off.
That was quick easy and painless... now let's see what the hackers do to counter.
many thanks from germany!
On another but related subject... I checked my 'cache' folder and found a sub-folder named "PPP" which contains two "acct.php" and "index.html" files.
Are these normal? I have tried to download a copy and delete the files from my server but i can't do it.
Also, I have deleted the files under the 'cache' folder" just for my own security measure. is this OK.
Please advise.
1) What shall I do/change to delete these files?
2) How could i transmit you the 'unknown' files?
thanks and let me know.
That map is owned by the server, thats the reasons you can't delete or rename it.
Warning: fopen(/MYSITE/orca/conf/params.conf): failed to open stream: Permission denied in /MYSITE/orca/inc/util.inc.php on line 263
Warning: Cannot modify header information - headers already sent by (output started at /MYSITE/orca/inc/util.inc.php:263) in /MYSITE/orca/inc/util.inc.php on line 36
Warning: Cannot modify header information - headers see more
Patch will not erase viruses :)
You should clean your dolphin before
We recommend HFW just because this is very stable and allow change all params just using .htaccess file (use php_flag register_globals Off here)
It will take you to http://www.boonex.com/trac/dolphin/wiki/6.1.2to6.1.3 Where the directions and links to patches are.
I use firefox 3... Dolphin updated from 6.1.2 to 6.1.3 before the patch no problems...
Warning: Cannot modify header information - headers already sent by (output started at /home/harry2/domains/hobipoint.nl/public_html/inc/header.inc.php:1) in /home/harry2/domains/hobipoint.nl/public_html/inc/design.inc.php on line 633
Warning: Cannot modify header information - headers already sent by (output started at /home/harry2/domains/hobipoint.nl/public_html/inc/header.inc.php:1) in /home/harry2/domains/hobipoint.nl/public_html/inc/design.inc.php on line see more
Sounds like you might have omitted the line where you should insert a new.
1 little line or missed file could potentially cause errors or problems. The good news with this one is no database updating.
I'd double check the instructions and back trace all your steps for starters.
Warning: require_once(BX_DIRECTORY_PATH_INCprofiles.inc.php) [function.require-once]: failed to open stream: No such file or directory in /home/connect/public_html/admin/index.php on line 26
Fatal error: require_once() [function.require]: Failed opening required 'BX_DIRECTORY_PATH_INCprofiles.inc.php' (include_path='.:/usr/lib/php:/usr/local/lib/php') in /home/connect/public_html/admin/index.php on line 26
And this under Orca
Warning: require_once(BX_DIRECTORY_PATH_ROOTgroups/orca/layout/uni/params.php) see more
are here present line
define('BX_DIRECTORY_PATH_INC', $dir['inc']);
and
define('BX_DIRECTORY_PATH_ROOT', $dir['root']);
?
Help!
Stuart
I built a brand new Dolphin upgraded all the way from 6.1.1 to 6.1.3 had no problems. Forgot to update the header.inc.php and guess what error I got :) Updated language files no problem. I am currently running RG_off.
When I did the upgrade on GGsite all went fine but I am still being punched :) IT DID tweek the attack thou...I'll send you the Log File. Still No Infections!
files are:
define('BX_DIRECTORY_PATH_INC', $dir['inc']);
define('BX_DIRECTORY_PATH_ROOT', $dir['root']);
define('BX_DIRECTORY_PATH_BASE', $dir['base']);
define('BX_DIRECTORY_PATH_CACHE', $dir['cache']);
define('BX_DIRECTORY_PATH_CLASSES', $dir['classes']);
define('BX_DIRECTORY_PATH_PLUGINS', $dir['plugins']);
Stuart
Stuart
I am glad I do follow these blogs. Thanks for the updates!!
it's great ... I upgraded my site successfully
my site work fine
best regards
Rawaf
http://www.a7lakalam.com
Am I the only one or can we all sense the entire community coming together because of this problem? I am really proud to be a part of this movement.
Kudos to DosDawg who has been working tirelessly in the forums to help as many as he can.
Juker
as far as I can tell it was something altered in the database.
I upgraded to 6.12 and my RSS feeds stopped working, does the 6.13 patch look at this problem?
Any ideas on how to fix this?
joe
P.S. говорить про безопасность в контекте этого движка не уместно моё ИМХО
Before this update everything works good.
If anyone have an idea ?
i am happy you realesed this one also we are hacked also, i know we are a small community of artists (just70 activ) but we invite only artist who we think to come over the huge wave of artists around the world and we want to share and to show art . i was soo tired to reintegrate all the moduls and maybe in the future you will really check up the stuff of expertzzz home to be shure the customers of your script run not in a knife of again and again to "reinstall" all there see more
i am happy you realesed this one also we are hacked also, i know we are a small community of artists (just70 activ) but we invite only artist who we think to come over the huge wave of artists around the world and we want to share and to show art . i was soo tired to reintegrate all the moduls and maybe in the future you will really check up the stuff of expertzzz home to be shure the customers of your script run not in a knife of again and again to "reinstall" all there see more
Fri Jul 25 06:13:15 2008] [error] [client 195.58.3.163] File does not exist: /srv/www/vhosts/digital-renaicances.org/httpdocs/community, referer: http://www.digital-renaissances.org/community/guestbook.php?owner=100005&action=show_add
[Fri Jul 25 06:13:16 2008] [error] [client 89.149.242.88] File does not exist: /srv/www/vhosts/digital-renaicances.org/httpdocs/community, referer: http://www.digital-renaissances.org/community/guestbook.php?owner=100005&action=show_add see more
195.58.3.163 - - [25/Jul/2008:06:13:15 +0200] "POST /community/guestbook.php?owner=100005 HTTP/1.1" 404 1351 "http://www.digital-renaissances.org/community/guestbook.php?owner=100005&action=show_add" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"
89.149.242.88 - - [25/Jul/2008:06:13:16 +0200] "POST /community/guestbook.php?owner=100005 HTTP/1.1" see more
All level 1 folders under /orca/ are set to 777.
Same problem with /groups/orca/
Can someone please guide on solving this issue.
Warning: Division by zero in /mysite.com/templates/base/scripts/BxBaseIndex.php on line 445
Error Database query error
This is line 445 ---> $pages = ceil( $num / $max_num );
Any ideas? Thanks for all you guys do!!
BEWARE - The patches do not work AND THE PROBLEM is not fixed!
I have 70 active members and on (8/3/08) Sunday night 10 members disappeared, on Monday night another 10 members disappeared, on Tuesday I began rebuilding and added 12 new members for a total of 62 and on Tuesday night 25 members disappeared. On Wednesday I removed all of the members except nine from my website and this morning (Thursday) one of the nine is missing.
I installed patch 6.1.3 with no error see more
Sounds more like you have been the victim of the software itself and not a virus.
Go to the Admin panel>Settings>Database pruning>Clean old profiles by last log in ( days ) and set it to something like 3000 otherwise it will delete your older profiles automatically.
Hope that helps.
Prof.
No Password on your site is safe. My member passwords are being bypassed and all membership information is being systematically deleted. I have temporarily changed the status of my remaining existing members to unconfirmed and the hacker cannot see them. Change your memberships to unconfirmed until this hacker attack is eliminated.
I want to give the Boonex team the benefit of the doubt. I think they are working hard to beat down these hackers and see more
Go to the Admin panel>Settings>Database pruning>Clean old profiles by last log in ( days ) and set it to something like 3000 otherwise it will delete your older profiles automatically.
Hope that helps.
Prof.