I posted this as an drupal issue here - http://drupal.org/node/842396 but was instructed that this is indeed a caching module issue which is boost in my case.
Hi,
My drupal root folder had several unidentified folders which I never created, I thought this to be a security breach but after investigation my webhost provided me following reply :
I took a look at the system log and found that these folder names were all associated with a similar type of HTML query:
/var/log/messages.4:May 4 22:03:17 host2 drupal: http://www.example.net|1273028597|search|123.27.111.38|http://www.example.net/search/node/http%3A/%252Fphimexpress.net/view_epi...|http://www.example.net/|0|results|http://phimexpress.net/view_epi,12902,1,bo_suu_tap_fashion_shows_not_for... (Content).
/var/log/messages.3:May 10 16:25:20 host2 drupal: http://www.example.net|1273526720|search|190.6.195.117|http://www.example.net/search/node/http%3A/%252Ffreemovies4u4ever.blogsp...|http://www.example.net/|0|results|http://freemovies4u4ever.blogspot.com/2007/12/mean-girls-2006-dvd-rip-fr... (Content).
It looks like Drupal was attempting to make these folders in its cache based on search queries. Normally these folders and files are all stored in "/home/account/public_html/cache/normal/www.example.net/search/node". However, when the search includes that "http://" it appears that Drupal is using the second "/" as a directory, and puts the temp file in the parent folder (public_html). It would appear this is an error with the way Drupal is coded rather than a malicous attack or security flaw. The first part of those URLs get stored as "http:/" in "/home/account/public_html/cache/normal/www.example.net/search/node".
Comment | File | Size | Author |
---|---|---|---|
#9 | boost-842756.patch | 772 bytes | mikeytown2 |
Comments
Comment #1
deepesh CreditAttribution: deepesh commented3 days no comment ? strange for an active module like this !!
Comment #2
deepesh CreditAttribution: deepesh commentedbump..
Comment #3
hansrossel CreditAttribution: hansrossel commentedLooks like the same issue as http://drupal.org/node/592490
Comment #4
deepesh CreditAttribution: deepesh commentedHow come I am still affected by this as I am using latest "6.x-1.x-dev" branch on my setup.
Comment #5
mikeytown2 CreditAttribution: mikeytown2 commentedissue most likely has to do with your version of PHP; what version are you running?
Comment #6
deepesh CreditAttribution: deepesh commentedPHP v 5.3.1
Comment #7
Anonymous (not verified) CreditAttribution: Anonymous commentedSee http://drupal.org/node/495290
Comment #8
deepesh CreditAttribution: deepesh commentedThis is a bit different issue because Boost it creating folder outside it's permitted cache folder in drupal root.
Comment #9
mikeytown2 CreditAttribution: mikeytown2 commentedgive this patch a shot
Comment #10
mikeytown2 CreditAttribution: mikeytown2 commentedcommitted http://drupalcode.org/viewvc/drupal/contributions/modules/boost/boost.mo...