World: r3wp

Sorry to hear you've been attacked, Graham.

I hope it is not too much work to get it all back together....Don't 
work all night!

Looks like it was not personal -- just some automated tools seeking 
vulnerabilities.

You seem to be on a fairly recent version of Apache, but that does 
mean you may be some months behind on the security patches:
http://httpd.apache.org/security/vulnerabilities_22.html

actually, I thought Graham was on Apache 1.3*

Server id  says 2.2.3. (that may be just a reply string, not the 
real situation of course).

well, index.php has been changed

I have an idle Cheyenne running on a Linode server without a domain 
name. it's been there for a couple of months now. I was a bit surprised 
to already see bots looking for wordpress, admin pages and attempts 
to submit various scripts for injection in the access log. Well, 
I guess I shouldn't be surprised.

Pity I couldn't run this under Cheyenne

At least I might have a clue how they did this.

well, the home page is now gone

I rm index.php

I would love to see data mining tools that can detect such attempts 
at access in the access log without having to read through the log. 
Do they exist?

wonder if it is a permission issue on the index.php file

I'm ready to bet it was a deki wiki or php vulnerability rather than 
an apache one...

php I bet

now to figure how to backup the mysql files and transfer them to 
a backup of the vm

Looks like I was not the only vm user who was attacked.  Mindtouch 
are investigating.  They suspect a PHP5 vulnerability that I guess 
I should have updated :(

the vulnerability has been identified.  There is a vulnerability 
in the rich text editor which allow a user to upload a php file as 
an image type and then browse to it executing it.  http://xinha.webfactional.com/ticket/1363
 So, not really a php exploit ...

I would have thought that this was pretty basic stuff ... not allowing 
non image types to be uploaded!

Hello everybody, does DRAW works with Linux?

I wrote a software with DRAW with 2 arrow and 2 text (Cartesian axes), 
in windows works, in Linux appear just the vertical row and notihng 
else...

Example:
stats:  [ 
	'arrow 1x0
	'line  10x390  10x10	
	'text 100x10 "EURO"
	'line  10x390  420x390
	'text 350x350 "Days"
	'pen blue
	'line 420x390 420x10
	'text 370x10 "Cash"
	'pen white
	'arrow 0x0
	'line  5x370 15x370
	'line  5x350 15x350
	'line  5x330 15x330
	'line  5x310 15x310
	'line  5x290 15x290
	]

view layout [ box 400x500 effect [draw stats]]

there could be font problems with DRAW under other platforms than 
Windows.

So if I change font ,will it  work?

yes

you have to define the font path

I think you are right, beacause after text Rebol do nothing

how I define Font and Fontpath, and how I can make that work in Windows 
and Linux?

this way ... http://www.compkarori.com/vanilla/display/AGG

THANK YOU!!!!

News to me. Is there a similar trick under OS X?

That's a pretty old post

I wasn't aware that agg fonts don't display in OSX .. but since it's 
also BSD based probably.

I tried to change the agg script to point to a ttf font file under 
OS X. It doesn't display.

I can ask Cyphre on ICQ ....

Sent request to him, but he's not online right now ...

Thanks!

Cyphre is not sure, if there is support for fonts in AGG under OS-X, 
he did it together with Carl, but long time ago ...

I am moving few domains of my friend to my server. However - he wants 
to access email, which means, I need to provide him with authenticated 
smtp. I have my old sendmail in simple mode - simply relying allowed 
from local 10* network, but not from the outside.


Has anyone succesfull configured sendmail, so that it would use authentication 
by username, password? My friend sent me following link, but I don't 
understand, what should I do :-) Hopefully I don't need to recompile 
sendmail :-)

http://www.sendmail.org/~ca/email/auth.html

I found out, that my Sendmail is probably compiled with SASL support:

[[root-:-linux] mail]# sendmail -d0.1 -bv root | grep SASL

                NETUNIX NEWDB NIS PIPELINING SASLv2 SCANF STARTTLS TCPWRAPPERS
[[root-:-linux] mail]# telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.

220 linux.pekr.dom ESMTP Sendmail 8.12.10/8.12.10; Wed, 2 Sep 2009 
15:37:31 +0200
ehlo localhost

250-linux.pekr.dom Hello localhost.localdomain [127.0.0.1], pleased 
to meet you
250-ENHANCEDSTATUSCODES
250-PIPELINING
250-8BITMIME
250-SIZE
250-DSN
250-ETRN
250-AUTH DIGEST-MD5 CRAM-MD5   <---- This means SASL is allowed
250-DELIVERBY
250 HELP

... now just how to further instruct sendmail to use it?

only allow the SSL ports to be used?

I got it running thanks to some sane persons, not linux top gurus, 
who can't explain kind of anything to mortal man. Those ppl will 
always wonder, why linux is still not mainstream ...

http://www.jonfullmer.com/smtpauth/

Simply put - starting "saslauthd -a shadow" daemon, then uncommenting 
2-3 lines in sendmail.mc, restarting sendmail, and voila, it was 
done ...

Thinking about providing my brother with some webmail option on my 
Linux server. In the past, I used simple Squirrel mail. Then I know 
some ppl do use Horde. Now my friend suggested me a Zimbra. Isn't 
Zimbra a little bit too much for just an occassional web option to 
pop3 account?

or would you move email out from your server to gmail? Does it allow 
you to host your domain?

Zimbra is overkill

I thought so - more a groupware than a simple webmail interface to 
email, right? Most of us use Thunderbird anyway, so ...

squirrel is fine .

What ftp server do you use?

wsftpd