Results 1 to 2 of 2

Thread: Security Concern, Config file with passwords is 777 on several installations!

  1. #1
    Thread Starter
    Newbie datatrond's Avatar
    Join Date
    Dec 2010
    Posts
    3
    Thanks
    0
    Thanked 0 Times in 0 Posts

    Security Concern, Config file with passwords is 777 on several installations!

    I just got a warning message from my hosting company that my Classipress installation had serious security problems and that the config file with database username and password and more was both readable and writeable (777).

    Since this is the first time I've ever installed one of your themes I'm sure that there is a big probability that I've done something wrong or have missed some important information that have caused this and that there is nothing wrong with your products.

    This is a support request only, not an accusation of anything.

    I installed Wordpress, then installed Classipress and nothing more. No plugins, no manual edits, nothing more. Just added some test ads, that's it!

    I cannot remember that I have gotten any warnings about modifying any file or folder rights? Or am I wrong?

    When I got the warning message I immediately turned too Google with some searches to look for solutions to my problem to gain knowledge about where to start. Then I found several other Classipress customers facing the same security problems that I am, but the only problem is that they are wide open and do not know anything about it. Therefore I'm concerned.

    Also, this affect other files and folders than the config file.
    Language files is available for editing and download on several sites.

    As mentioned above, I'm sure this is most likely related to the installation and not the product alone, therefore I need some advice.

    When I get the receipt on how to fix this I can distribute the info to those other users if wanted. It is not fair not telling them that their usernames and passwords are indexed in google available for everyone to view and hack if wanted..

    Please help!

  2. #2
    pepsi's Avatar
    Join Date
    Mar 2009
    Location
    New Zealand
    Posts
    14,887
    Thanks
    91
    Thanked 807 Times in 721 Posts
    You must be an AppThemes customer and logged in to view this response. Join today!

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. SQL Injection, Security Concern
    By imomin in forum Report ClassiPress Bugs
    Replies: 1
    Last Post: September 2nd, 2010, 01:40 PM
  2. /.git/config - Is there a concern
    By realestateguy100 in forum Help Using ClassiPress
    Replies: 0
    Last Post: May 25th, 2010, 07:19 PM
  3. Nice Passwords
    By Wamba in forum Help Using ClassiPress
    Replies: 2
    Last Post: May 1st, 2010, 08:57 AM
  4. Need solution for Multiple Classipress Installations
    By imbue in forum ClassiPress General Discussion
    Replies: 7
    Last Post: April 6th, 2010, 01:01 AM