0
Welcome Guest! Login
0 items Join Now

IFD on server: Suspicious File Alert

Last Post
Search Topic

  • IFD on server: Suspicious File Alert

    Posted 13 years 1 month ago
    • Just did a new Joomla 2.5.3 install. PHP Version 5.2.17, Installed Rokstories, RokGallery, RokNavMenu. and my server started sending out dozens of suspicious file alert warnings all day long. I don't think this is a template issue since I only started getting these warnings after installing the above components, but just in case it's with template ionosphere. I have not even used these modules yet, just installed them. This is not a live site and is in early stages of development.

      Here's the warning message:
      File: /tmp/RokCommon2ea65e3d17ec39a21418a60f431bcf0cServiceContainer.php
      Reason: Script, file extension
      Owner: nobody:nobody (99:99)
      Action: No action taken

      I Contacted my server admin and they emptied the tmp folder, but something keeps writing to this.
      Anyone knows what's going on?
    #792537
    • David Goode's Avatar
    • David Goode
    • Preeminent Rocketeer
    • Posts: 17058
    • Thanks: 890
    • Web Designer and Host

    Re: IFD on server: Suspicious File Alert

    Posted 13 years 1 month ago
    • Hi there,

      Check to see if RokGZipper is turned ON. If it is then disable it and see if the problem clears.

      I would be mightily concerned if my server was installing nobody/nobody as this is no good. Most hosts operate suexec to avoid these sorts of ownership problems.

      Hope this helps 8)

    • Please search forums before posting. Please make sure your post includes the version of the CMS you are using and a link to the problem. Annotations on screenshots can also be helpful to explain problems/goals. Please use the "secure" tab for confidential information
    #792603

  • Re: IFD on server: Suspicious File Alert

    Posted 13 years 1 month ago
    • Hello, Thanks for the suggestions. I don't have any compression turned on for the whole site. I was working on the site for days and didn't see any server errors. It was only after I installed the extensions that I started getting suspicious file alerts. And, Yes, it's a concern.
      Theoretically, there should be no ownership problems. I always upload a new install via a dedicated FTP account and install with FTP layer turned on. I've got Joomla 1.5 sites and never had this issue. Just now trying out the new 2.5.3 CMS.
      I think I'll uninstall Rockstories, RokGallery, and RokNavMenu and see if I keep getting the IFD messages.
    #792663

Time to create page: 0.169 seconds