Hi all...
Over the last couple of days I have been dealing with various attempts to compromise my site / hack into it. First I had someone pasting in Javascript using HTML, so I turned HTML off. Last night someone tried to paste in an odd URL containing strange code. I ended up writing a custom hack to disable the parsing of URLs for new users -- wasn't sure what else to do.
I am running v2.2.6. I just read about the calendar.php issue and replaced it with the patched one. Am I "safe" now? Or do I need to do a full upgrade to version 3? It seems like a fair bit of work and I don't really have time to do a complete upgrade, though I will if I need to.
Thanks for any advice... Charles
Over the last couple of days I have been dealing with various attempts to compromise my site / hack into it. First I had someone pasting in Javascript using HTML, so I turned HTML off. Last night someone tried to paste in an odd URL containing strange code. I ended up writing a custom hack to disable the parsing of URLs for new users -- wasn't sure what else to do.
I am running v2.2.6. I just read about the calendar.php issue and replaced it with the patched one. Am I "safe" now? Or do I need to do a full upgrade to version 3? It seems like a fair bit of work and I don't really have time to do a complete upgrade, though I will if I need to.
Thanks for any advice... Charles
Comment