snapper

In talking to the guys who got hacked, they were running 1.3 final. They were told by invision that this patch would not have prevented the SQL injection. It's 2nd hand info, but if the file is not needed.......I renamed mine and moved it to a separate folder on the server.

If you run any version of IPB, there has been a new security hole discovered. The ssi.php file can be SQL injected remotely allowing a cracker to gain access to the passwords (kind of a backdoor into the admin cp). The ssi.php file is only needed if you are integrating with a website (kind of like an RSS feed) and has no effect to the rest of the board if removed or renamed. I have an online friend whose forum was taken down by a cracker and when he finally got the site back up (all of the admin/mod passwords had been changed), it was taken back down again very quickly. Through the process of elimination, they discovered the problem with the ssi.php file (incidentally, a while back, it was announced that there was a problem with the ssi.php file, but it was considered to be minor). Invision worked with the webmaster of the site and they do know about the problem, so probably either expect a new security patch on the horizon or just the advice to remove/rename the ssi.php file.

If you buy a reseller hosting plan and only put a single website on it, is there a limit to the amount of domain names that can point to a subdomain? ie: I own a.com, b.com & c.com with a reseller plan, I can point a.com to w.myname.com; b.com to r.myname.com and c.com to p.myname.com. You can do this with reseller hosting, but not shared, correct?

Thanks for the FAST reply! Cool, hope I don't have to, but you never can tell Rob - - -what do the #'s in your signature mean? Got me curious at this late hour.

If I host a site with TCH and pre-pay for a year in advance and say 3 months down the road I ditch that website, would I be able to change the site out with another one (rather than lose the remaining 9 months)? the reason I am asking is because I ran into that problem with another host @ 2 years ago and they would not allow me to trash the first site and start another one. Thanks!