Veteran Soldier Hosting

Veteran Soldier Hosting http://www.vetsols.net (877) VETSOLS (838-7657) Veteran Soldier Hosting Veteran Soldier Hosting Evo RSS Parser 60 Veteran Soldier Hosting http://www.vetsols.net/images/evo/minilogo.gif http://www.vetsols.net 94 15 Nuke-Evolution 2.0.7 Powered - Xtreme 2.0 Edition en-us marc@vetsols.net 2010-09-08T05:08:52-06:00 hourly 1 2010-09-08T05:08:52-06:00 Default PHP setting change- register_globals http://www.vetsols.net/modules.php?name=Forums&file=viewtopic&t=5#5
Our good friend and security guru Adrian Santangelo from http://www.computersourcenw.com compiled several articles discussing the risk of this setting:

Google:
- http://www.google.com/search?&q=register_globals+ON+security+risk

Over 100,000 hits, some of which should be high profile enough to think twice about this. They include places like:

PHPSec.org (#1 resource for secure PHP coding)
- http://phpsec.org/projects/guide/1.html

SANS.org (Yes, THE SANS)
- http://www.sans.org/newsletters/risk/display.php?v=3&i=52

PHPBuilder.com (Highly respected site for tutorials, templates, etc)

- http://www.phpbuilder.com/columns/ian_gilfillan20050707.php3

SecurityFocus.com (Highly respected security related website)
- http://www.securityfocus.com/archive/1/425285/100/0/threaded

osCommerce.com
- http://forums.oscommerce.com/lofiversion/index.php/t192646.html

Sitepoint.com (Highly respected info provider for web pros)
- http://www.sitepoint.com/article/php-security-blunders/2

The list is endless. This is a serious issue that needs to be addressed. Here is a quote from the last article linked above (SitePoint.com) as it says it short and sweet:
________________________________________________________________________________

#1 security blunder of PHP?

register_globals: The boogeyman of PHP security is register_globals, which used to default to "on" in older releases of PHP but has since been changed to default to "off". It exports all user input as global variables. Check this setting and disable it -- no buts, no exceptions. Just do it! This setting is possibly responsible for more PHP security flaws than any other single cause.

If you're on a shared host, and they won't let you disable register_globals, get a new host!
________________________________________________________________________________

We are asking that you take a look at your scripts, and make the necessary changes to eliminate the need for this setting.]]> 5@http://www.vetsols.net Default PHP setting change- register_globals 2009-10-30T14:50:15-06:00 Welcome To Veteran Soldier Hosting http://www.vetsols.net/modules.php?name=Forums&file=viewtopic&t=4#4 CLIENTS AREA These forums are here for you, the customer, so please don't abuse them.

Please, make sure you read the Rules Of The Forum

If at any time you have a question about the forums, please read the FAQ. If the answer to your question is not there, then ask in the forums.

Again, WELCOME, and we hope you enjoy your stay and our services.]]> 4@http://www.vetsols.net Welcome To Veteran Soldier Hosting 2009-10-30T14:49:19-06:00 System Security 2009/2010 WARNING! http://www.vetsols.net/modules.php?name=Forums&file=viewtopic&t=3#3
System Security 2009 makes its way onto unsuspecting PC's with the help of Trojans and misleading advertisements. Once System Security 2009 is installed on a PC it will preform a system scan and report numerous infections, which are all fake. System Security 2009 will also display multiple security warnings and system alerts that are fake as well. These fake infection warnings are used to frighten people into buying the full version of System Security 2009 to clean the infection off the PC. System Security 2009 is completely useless, the ultimate scam, the software does not remove malware or protect the PC from future infections. System Security 2009 is a PC parasite, an infection in itself, and should be avoided.

System Security is a fake anti-spy ware software belonging to the family of Win web Security. It does a false scanning till you purchase the software. If it is not purchased and just installed the software, then it scans the computer and displays the variety of infected files which can’t be removed unless it is purchased.

The System Security virus troubles most of the time, once if they infect your PC then system enormously become slowly and also the system will freeze. Don’t purchase this kind of program they publish for the sake of finance. The wallpaper will also get changed and appears in red color with a warning message “You are in Danger”. Manually it’s difficult to remove but by using some tools it’s easy to get rid of it.

How to remove the System Security Virus:

Two tools are required and are used in conjunction with each other. They are

• Anti-spy ware program
• Registry Cleaner

Registry cleaner cleans the registry of a PC’s Window. Cleaning is important as registry is the place where all the options and settings of every program are stored. If a PC is displaying a message like .EXE error message, Repair DLL error message, Sychost, spyware, virus, System 32, General shutdown, Fix general protection etc then you can fix the error by using registry fix tool.

Auto clean the system with the virus scanner. Then download a good virus program and scan it. If you still find any virus then clean and disable the system restore. Start your system in Safe mode (press F8 at startup) and again run the virus scanner.

If you are unable to open any application like task manager, .EXE files or regedit then it is to be removed manually. Run in safe mode, go to search and search all the applications of your system. Delete any if you find different. The same thing is done for registry keys and .dll files.

I recommend you not to mess if you don’t know the procedure.]]> 3@http://www.vetsols.net System Security 2009/2010 WARNING! 2009-10-30T14:48:13-06:00