|
08-12 phpAuction mourns death of Gianluca Baldo |
|---|
|
Gianluca Baldo, phpAuction founder, died Saturday, August 9, at the age of 47. 'Baldo' was an extremely creative and talented person. Known in the 'www' as phpAuction founder, he also had other facets as a frame drummer and a painter. He was born in Verona (Italy) on July 7th, 1961 and moved to Barcelona (Spain) in 1999. We were lucky to share his passion and precious life moments. |
|
07-17 New members |
|---|
|
We are glad to welcome one new members in our team. Pau Escrich, system administrator. And also our tree interns: Ana, Miguel and Samuel all the way from USA into Marketing, business and tech department respectively. |
|
07-17 phpAuction GPL 3.3.0 RC 2 available |
|---|
|
We have are happy to announce the release of phpAuction GPL 3.3.0 RC 2, more stable, with RC1 bugs fixed and compatibility with WAMP environment. |
|
07-17 Updates & Upgrades tool |
|---|
|
In order to provide better software solutions for you, we are improving our updates & upgrades tool available at your admin back-end. For this reason we strongly recommend that you contact our techs in order to get a detailed list of updated files, instead of running the tool. Please contact them through the Help Desk available at your account page under the Support tab. We will contact you by e-mail advising you of future actions regarding this improvement.
Regards, phpAuction team |
|
04-13 New members |
|---|
| We are glad to welcome two new members in our team. Claudia Garrido and Claudia Mayen in the technical and sales department respectively. |
|
04-14 New HeadQuarters |
|---|
|
phpAuction is glad to announce the new headquarters. |
|
06-09 phpAuction Hack Safe |
|---|
|
Dear client, The last days we had detected certain problems regarding hackers attacks through specialized software searching for sites vulnerabilities, unfortunately phpAuction had been include in its attempts. More information about this new available at: http://www.bitdefender.com/VIRUS-1000262-en--Trojan.Clicker.HTML.IFrame.AR.html Also, we have solved common hack attacks you found at: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1416 http://www.frsirt.com/english/advisories/2008/0908 http://attrition.org/pipermail/vim/2005-July/000197.html http://www.tecchannel.de/sicherheit/news/1751199/ In order to protect your site and verify you hadn't received any attack we will kindly ask you to werify your phpAuction site with an antivirus (if you are not sure how to do it, please contact your hosting provider). If unfortunately your site was attack we will kindly ask you to follow the next steps: 1) Delete from your server all suspicious files that are not related with you phpAuction site. Please, see these folders: /themes/ /themes/**Theme**/CVS/ /uploaded/ 2) Edit your site's file that contains malicious code and delete ir from the files. An example of this code is: <IFRAME src="http://xxxxxxxxxxxxxxxx" width="0" height="0" frameborder="0"> <IFRAME src="http://xxxxxxxxxxxxxxxx" width="0" height="0" frameborder="0"> <IFRAME src="http://xxxxxxxxxxxxxxxx" width="0" height="0" frameborder="0"> <IFRAME src="http://xxxxxxxxxxxxxxxx" width="0" height="0" frameborder="0"> ... 3) Run the Updates & Upgrades tool for latest files versions. We recommend special attention to /includes/settings.inc.php and /header.php files, which have speciall code to safe your site. Remember that you have to make writable these old files at your server. Only if you have phpAuction GPL 3.2, please download following files: ./includes/settings.inc.php [ZIP file] ./header.php [ZIP file] ./clickthrough.php [ZIP file] ./includes/banners.inc.php [ZIP file] If you have phpAuction XL, Classifieds, Trading, Reverse, EP or Packs don't download these files 4) Check with your hosting provider the possibility to add the attached file (.htaccess) to the root folder of your phpAuction site The attached code functions are: a) Protect against the most common hack sofwtare b) Forbid the SQL injection use (http://en.wikipedia.org/wiki/SQL_Injection) and XSS (http://en.wikipedia.org/wiki/Cross-site_scripting) c) Correct know vulnerabilities d) Limit fraudulent accesses The .htacces is a an extension of your web Apache server and use the mod_rewrite module available in most of the hosting providers. With the purpose of improving your site, please follows the steps indicated and future new developments offered by phpAuction. We appreciate your attention and work in everyday basis to improve our products and services. Regards, + .htaccess file + <ifModule mod_rewrite.c> Options +FollowSymlinks RewriteEngine On RewriteCond %{QUERY_STRING} load_file.*\(.*\) [NC,OR] RewriteCond %{QUERY_STRING} into.+file [NC,OR] RewriteCond %{QUERY_STRING} into.+outfile [NC,OR] RewriteCond %{QUERY_STRING} load.+data [NC,OR] RewriteCond %{QUERY_STRING} select.+from [NC,OR] RewriteCond %{QUERY_STRING} create.+table [NC,OR] RewriteCond %{QUERY_STRING} drop.+database [NC,OR] RewriteCond %{QUERY_STRING} drop.+database [NC,OR] RewriteCond %{QUERY_STRING} drop.+table [NC,OR] RewriteCond %{QUERY_STRING} drop.+column [NC,OR] RewriteCond %{QUERY_STRING} drop.+procedure [NC,OR] RewriteCond %{QUERY_STRING} update.+set [NC,OR] RewriteCond %{QUERY_STRING} insert.+into.+values [NC,OR] RewriteCond %{QUERY_STRING} insert.+into [NC,OR] RewriteCond %{QUERY_STRING} bulk.+insert [NC,OR] RewriteCond %{QUERY_STRING} union.+select [NC,OR] RewriteCond %{QUERY_STRING} alter.+table [NC,OR] RewriteCond %{QUERY_STRING} base64_encode.*\(.*\) [NC,OR] RewriteCond %{QUERY_STRING} .txt(\?)+$ [NC,OR] RewriteCond %{QUERY_STRING} prefix= [NC,OR] RewriteCond %{QUERY_STRING} include_path= [NC,OR] RewriteCond %{QUERY_STRING} (\?)+$ [NC,OR] RewriteCond %{QUERY_STRING} (\<|%3C).*script.*(\>|%3E) [NC,OR] RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR] RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2}) RewriteRule .* - [F] RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK|OPTIONS|HEAD) RewriteRule .* - [F] RewriteCond %{HTTP_USER_AGENT} libwww-perl [NC,OR] RewriteCond %{HTTP_USER_AGENT} Wget [NC,OR] RewriteCond %{HTTP_USER_AGENT} Indy\ Library [NC] RewriteRule .* - [F] </IfModule> |
|
06-09 phpAuction launch new corporate Site |
|---|
|
phpAuction initiates a new stage, in which the constant improvement of our products and clients’ needs satisfaction becomes our main priority. For that reason we have invested in human talent, new resources and infrastructure improvement. This new phase materialization drift in the launch of phpAuction new corporate Site, available from today, and starting off of the consideration that this is the place through which we will maintain alive communication with our clients.
With a new and modern design, in harmony with our renewed spirit, we substantially optimized navigability and usability. In this way, and maintaining the vocation spirit to maintain alive the communication, we provide the following information and communication tools:
· Forum: a place in which to meet and to interact with other professionals, and of course, a space to share with the phpAuction team your needs and improvement enquiries. · Blog: A book log, a notebook of notes to be aware of all what happens in the sector and how do we see it. · Monthly Newsletter In phpAuction we find the inspiration in our cliets. We love what we do and we are willing to offer an excellence quality service. We believe that the open up and the optimization of our communication channels are a great future bet to grow. |
|
06-18 phpAuction GPL Basic free |
|---|
|
phpAuction GPL 3.2.1, is the basic core product inside phpAuctions' family.If you’re looking for a great starting point for your new web-based auction site, this is THE tool for you - Simple. Intuitive and user-friendly. - Scalable. From 1 to a million auctions. - Cross platform. (Windows/Linux/Mac) Easy to install (PHP based). The phpAuction GPL Basic license allows you to use, modify, distribute, and sell. Best of all… it is free of cost. More info at: http://www.phpauction.net/products/gpl-basic/ Download it at: http://www.phpauction.net/download/ |
© phpAuction - All rights reserved.