Wallet Manager Code UpdatePosted: 2013-08-13 Filed under: eveonline | Tags: php 6 Comments
It is with great pain that I have to announce that my wallet manager code was compromised at an unknown time in the past. I haven’t spent too much time doing computer forensics because I believe that I was compromised on a previous VM that hosted my site in 2011, which has since been deleted in favor of a OS refresh.
Details about the compromise can be found on this stackoverflow.com post. If you have downloaded and are running a copy of my Wallet Manager, you will want to look at files in the /protected/models/ directory for the exploit code.
Going forward I am going to publish the Wallet Manager code to a public GitHub repository. My goal will be to secure the code, make it open source, and enable community contributions.
Never seen your wallet manager but always good to see someone choosing the open source route. Good luck with the bug hunting.
That’s not good at all, makes me glad I’ve just ran it internally rather than on my main site. Thanks for letting us know though and hope to see it on GitHub soon! 🙂
[…] https://k162space.com/2013/08/13/wallet-manager-code-update/ […]
how can i get a copy of the Wallet Manager ?
Any way we can get our hands on the code?