Jump to content

Recommended Posts

Posted

Our openx cache directory was recently hacked with a "web shell". We've removed the hacked files and we know we need to upgrade from openx to revive but because of customization's in our openx implementation - that isn't particularly straight forward. (It'll take more than a day or two to do an upgrade so we're trying to come up with ways to mitigate our risk in the interim.)

 

Can we move the openx cache directory above the apache root? So for instance say the apache htdocs location is /apache/htdocs, and the cache directory is located at /apache/htdocs/var/cache, could we move the cache directory to /apache/cache?

 

I see an entry in the openx config file:

[oxCacheFile]

cachePath=

 

Is that where we can set this? 

 

Thanks

Brad

  • 3 months later...
Posted

Hi Brad,

Have you been able to solve this issue and understand the attack vector?

 

It looks like my organization was attacked using a similar vector and I was wondering if there are any insights you can share on dealing with this?

 

Thanks,

  • 2 years later...

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...