Today I've taken the Arcade section offline and will be progressively closing other sections down (temporarily) in an attempt to troubleshoot the return of an old problem.
Once again some nice person has figured out how to turn my server into a spam factory again using PHP injection and the logs can't tell me which section is the source. As a result the server IP has probably been banned again by Hotmail/Yahoo/Bigpond, so any new registrations using those providers might not receive their activation email until I can sort this out.
I do know the problem is within the public_html dir of this domain so I'm working through all the addon modules first in the hope that I can ID the problem area quickly.
I'm also considering disabling "register globals" and modifying some of the potentially unsafe options such as exec() and shell_exec() and I've been advised by the techs at Fastservers that I should consider implementing a more aggressive mod_security ruleset for Apache.
Please be advised that any of those changes has the potential to "break" the site's code, so over the next few days, if weird things happen and site goes down for a while, you'll know why.
I appreciate it if the only replies to this thread were to alert me to something that's broken.
