Surpass Web Hosting Forums - View Single Post - Drawing attention to a helpdesk ticket (really sorry to do this).

Tamsin · February 28th, 2008, 7:38 AM

I've only just submitted this ticket, but I just wanted to drop in here and draw attention to it, since it is the hugest problem by far that I have EVER, EVER had, and it's already had some serious ramifications in just the time I've been asleep.

Looks like last night Apache was recompiled on my dedicated server by helpdesk, to fix a completely non-related issue issue. However, it has not be compiled with PHP support from the looks of things, and NONE of my PHP files are now being parsed server side at all - they are displaying in browser windows. This has already caused at least five of my database username/passwords to be compromised, and I am desperately trying to do damage control now by deleting any file that queries sql, but I have no idea if this information has circulated yet, no way to change the usernames/passwords (as obviously I can't access PMA either), and it would be a ten second task for someone who managed to download one of my scripts pulling sql information to upload it elsewhere, modify it and pull/change information from my dbs right now, so I am literally having something of a crisis.

ANYTHING that could be done to help this process be sped along right now would be hugely, hugely appreciated.

February 28th, 2008, 7:38 AM	#1 (permalink)
Tamsin Registered User Fresh Surpasser Joined in Feb 2008 8 posts Gave thanks: 0 Thanked 0 times	Drawing attention to a helpdesk ticket (really sorry to do this). I've only just submitted this ticket, but I just wanted to drop in here and draw attention to it, since it is the hugest problem by far that I have EVER, EVER had, and it's already had some serious ramifications in just the time I've been asleep. Looks like last night Apache was recompiled on my dedicated server by helpdesk, to fix a completely non-related issue issue. However, it has not be compiled with PHP support from the looks of things, and NONE of my PHP files are now being parsed server side at all - they are displaying in browser windows. This has already caused at least five of my database username/passwords to be compromised, and I am desperately trying to do damage control now by deleting any file that queries sql, but I have no idea if this information has circulated yet, no way to change the usernames/passwords (as obviously I can't access PMA either), and it would be a ten second task for someone who managed to download one of my scripts pulling sql information to upload it elsewhere, modify it and pull/change information from my dbs right now, so I am literally having something of a crisis. ANYTHING that could be done to help this process be sped along right now would be hugely, hugely appreciated.