[mapserver-users] Server hacked via cgi-bin - Mapserver, PHP, ?? How to better protect the machine now?
Mark Volz
MarkVolz at co.lyon.mn.us
Mon Dec 9 12:46:38 PST 2013
Jeff,
As far as I am aware the last MS4W package that included MapCache was version 3.0.4 -dev from 2/2012. So does that mean that MS4W users that want to take advantage of Mapcache will have to deal with a security issue until someone contributes funding so that you can push out another MS4W / MapCache package?
Thanks
Mark
> I know a security review was done on MS4W about a year ago, and several
> important changes were made to improve security in terms of PHP misuse.
> (servers running MS4W older than version 3.0.5, 2012-05-25, are vulnerable)
>
> -jeff
More information about the MapServer-users
mailing list