Thanks for confirmation Chuck.
I saw the option to move the original pictures. Great functionality there for people who want to make sure their images are NOT being linked to from another site.
That won’t help me - the 777 directory structure still stays exposed for the bad guys.
This Internet is a crazy place ain’t it?
There’s always someone out there smarter or faster than you.
I’d love to plug this hole if there’s any way to do that.
My vBulletin or Photo Post application didn’t seem to get compromised. After a careful review of permissions and configuration options, I don’t seem to have any silly wide open holes in my own settings. At least not from what I can tell. I referenced a number of “How To Make My Forums More Secure” type of threads…I seem to be in compliance for the most part. I’m currently tightening a couple of things they suggested though – removing Impex folder... I guess I could upgrade to vBulletin to 3.6.5, but I didn’t get that sense of urgency…
Can I password protect “uploads” and “data” directories using .htaccess/.htpassword ? Would that “break” PhotoPost?
Just exploring all my options.