Hello all,
This is my first question on this form.
I have a friend that is using a PHP opensource content management system (I won't name the CMS because it's irrelevant).
There is a hacker that keeps getting into the system via some backdoor. Their attack stems from writing to a particular JavaScript file in which the system relies on.
Here are my ideas:
Is there a way to "Hook" into or "override" the file writing IO functionality of PHP to log as much detail to another file regarding each read and write that occurs. Hopefully this could possible tell me which script in the CMS is writing to the file.
Is this possible? Is there a better way to acommplish this task?
I appreciate all recommendations.
Thanks.