PHP Blogging Apps Vulnerable to XML-RPC Exploits
4th July, 2005
Many popular PHP-based blogging, wiki and content management programs can be exploited through a security hole in the way PHP programs handle XML commands. The flaw allows an attacker to compromise a web server, and is found in programs including PostNuke, WordPress, Drupal, Serendipity, phpAdsNew, phpWiki and phpMyFAQ, among others.
The flaw affects the XML-RPC function, which has many uses in web applications, including "ping" update notifications for RSS feeds. PHP libraries that allow applications to exchange XML data using remote procedure calls(RPC) fail to fully check incoming data for malicious commands. The affected libraries, including PHPXMLRPC and Pear XML-RPC, are included in many interactive applications written in PHP.
Rackspace, Interland and 1&1.com Most Reliable Hosting Company Site during June
1st July, 2005
June 1st - 30th 2005
Rackspace, Interland and 1and1.com share the top slot as as the most reliable hosting company sites this month. Rackspace, was also the most reliable hoster in February, March and April 2005. Datapipe, which was the most reliable performer for the second half of 2004, has now been among the top 10 performers every month thus far in 2005. This month's results end a string of nine consecutive appearances for iNetU among the top 10 most reliable hosts.
This month Linux, Windows and FreeBSD all have 3 sites each in the top 10, with one running Solaris. The second-place showing by Interland continues a string of strong performances for Windows 2000 hosts, which have ranked either first or second in reliability in each of the past three months.
July 2005 Web Server Survey
1st July, 2005
In the July 2005 survey we received responses from 67,571,581 sites. The gain of 2.76 million hostnames from June is the second-largest monthly increase in the history of our survey, as 2005 continues to shape up as a historic year for Internet growth. The only larger gain was a 3.3 million hostname increase in March 2003, which ended months of stagnation and kicked off 30 consecutive months of positive growth for the Web.
Factors in the dramatic growth include:
- Increasing use of the Internet by small businesses as web sites and online storefronts become more affordable.
- The explosive growth of weblogs, a growing number of which are purchasing domains for branding purposes.
- Speculation in the market for domain names, buoyed by rising resale prices and the ability to generate revenue via pay-per-click advertising on parked domains.
- Strong sales of online advertising, especially keyword-based contextual ads that support business models for both domain parking and commercial weblogs.
The Internet has added 10.7 million hostnames in the first seven months of the year. Barring a dramatic slowdown, 2005 should easily exceed the record growth of 16 million hostnames in 2000.
Total Sites Across All Domains August 1995 - July 2005
Market Share for Top Servers Across All Domains August 1995 - July 2005
Top Developers
| Developer | June 2005 | Percent | July 2005 | Percent | Change |
|---|---|---|---|---|---|
| Apache | 45172895 | 69.70 | 47030635 | 69.60 | -0.10 |
| Microsoft | 13131361 | 20.26 | 13871645 | 20.53 | 0.27 |
| Sun | 1849471 | 2.85 | 1842812 | 2.73 | -0.12 |
| Zeus | 580844 | 0.90 | 608121 | 0.90 | 0.00 |