News:

SMF 2.1.4 has been released! Take it for a spin! Read more.

Main Menu

contains a virus Atomicorp.PHP.fopen

Started by Dhayzon, September 07, 2020, 01:11:25 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Dhayzon

September 07, 2020, 01:11:25 PM

:/
source

https://github.com/SimpleMachines/SMF2.1



The file you uploaded, Sources.zip, contains a virus so the upload was canceled: Atomicorp.PHP.fopen.htaccess.2010121601.UNOFFICIAL FOUND




what happen

shawnb61

#1
September 07, 2020, 01:23:23 PM
Where exactly did you find a file called "Sources.zip"?

Whenever I download from GitHub it is named "SMF2.1-release-2.1.zip" (for current code) or "SMF2.1-2.1-rc.2.zip" (if going for the RC2 release)...

I don't know where to find a download named "Sources.zip"...
Address the process rather than the outcome.  Then, the outcome becomes more likely.   - Fripp

Dhayzon

#2
September 07, 2020, 01:27:28 PM


current version  2.1

I unzipped it to remove some files that are generated by git, then I re-compressed it

Oldiesmann

#3
September 07, 2020, 01:29:54 PM
That is not included in the file you download from GitHub.
Michael Eshom
Christian Metal Fans

marcosbr

#4
September 07, 2020, 01:40:32 PM
Nothing in life is absolute. We are always learning... Did you know that?
https://amigosdaeletronica.com.br

Dhayzon

#5
September 07, 2020, 01:48:53 PM
I wanted to try version 2.1 RC3

but i will see how i manage to upload the files

marcosbr

#6
September 07, 2020, 01:54:27 PM

Updated daily. So...
It's the youngest!
Nothing in life is absolute. We are always learning... Did you know that?
https://amigosdaeletronica.com.br

Arantor

#7
September 07, 2020, 01:57:21 PM
In other words, it uses a function in PHP that's common for injections, and someone's antivirus is way too sensitive.

Dhayzon

#8
September 07, 2020, 03:11:10 PM
ok.
The problem is that

@fopen

Code Select
if (file_exists($path . '/.htaccess'))
{
$errors[] = 'htaccess_exists';

continue;
}

else
{
$fh = @fopen($path . '/.htaccess', 'w');

if ($fh)
{
fwrite($fh, '<Files *>
Order Deny,Allow
Deny from all' . $close);
fclose($fh);
}

else
$errors[] = 'htaccess_cannot_create_file';
}

in
Security.php file

solve.

Kindred

#9
September 07, 2020, 06:54:41 PM
Quote from: Arantor on September 07, 2020, 01:57:21 PM
In other words, it uses a function in PHP that's common for injections, and someone's antivirus is way too sensitive.
Слaва
Украинi

Please do not PM, IM or Email me with support questions.  You will get better and faster responses in the support boards.  Thank you.

"Loki is not evil, although he is certainly not a force for good. Loki is... complicated."

shadav

#10
September 07, 2020, 07:30:02 PM
Quote from: Arantor on September 07, 2020, 01:57:21 PM
In other words, it uses a function in PHP that's common for injections, and someone's antivirus is way too sensitive.
I hate when my antivirus pulls that crap on me when I in fact know that there is no virus in the file but the stupid antivirus thinks that there is and I gotta argue with it to get it to work....usually it's because of a .exe file in the zip
:laugh: or funnier when it does it on the sims mods for the game because they are script files...like ug stupid thing shut up....
Print
Go Up Pages1
User actions
Advertisement: