Solved

php upgrade

Posted on 2002-03-07
3
283 Views
Last Modified: 2012-05-04
Hello,

With the recent announcement of the PHP exploit (see http://www.php.net), I have been charged with upgrading all of our servers.  All of them went smoothly - except for one:

Redhat Linux 5.2
Redhat Secureweb 2.0 (Redhat's Apache with SSL, based on Apache 1.3.1)
PHP 3.0.5
(Yes, I know these are all old!)

I have tried the following:
- Dropping in a patched 3.0.18 libphp3.so, compiled on another machine
I gotten several errors, the showstopper being:
undefined symbol: ap_regexec
- compiling 3.0.18 on the Redhat 5.2

- patching and compiling 3.0.5 on the Redhat 5.2
Can't even get it patched, as there are several code changes to the mime.c, I tried dropping in the mime.c from the 3.0.18 and compiling, but no luck.

Is there anyone that has had this situation and was able to upgrade?  Please help!

Thanks,

Tom
0
Comment
Question by:tom419
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 3

Accepted Solution

by:
rycamor earned 300 total points
ID: 6879164
1. Are you sure your patch was successful? How about documenting exactly what you did to patch the PHP 3.0.18 source, and then your steps to compile.

2. You might not be vulnerable anyway, because the exploit was only documented for PHP versions 3.0.10-3.0.18.

3. BTW, the simple fix, if you don't want to update, is just to disable file uploads in php.ini. If you really need file upload capability, just find a good Perl CGI script for that and call it a day.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Foreword (July, 2015) Since I first wrote this article, years ago, a great many more people have begun using the internet.  They are coming online from every part of the globe, learning, reading, shopping and spending money at an ever-increasing ra…
These days socially coordinated efforts have turned into a critical requirement for enterprises.
Learn how to match and substitute tagged data using PHP regular expressions. Demonstrated on Windows 7, but also applies to other operating systems. Demonstrated technique applies to PHP (all versions) and Firefox, but very similar techniques will w…
The viewer will learn how to create and use a small PHP class to apply a watermark to an image. This video shows the viewer the setup for the PHP watermark as well as important coding language. Continue to Part 2 to learn the core code used in creat…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question