This is a living document. Everything in this document is made in good faith of being accurate, but like I just said; we don't yet know everything about what's going on.
On March 29th, 2024, a backdoor was discovered in xz-utils, a suite of software that
| <?php | |
| namespace Acme\Doctrine\DBAL; | |
| use Doctrine\DBAL\Connection; | |
| declare(ticks = 3000000); | |
| class ConnectionKeepAlive | |
| { | |
| /** |
| #!/bin/bash | |
| # Bash shell script for generating self-signed certs. Run this in a folder, as it | |
| # generates a few files. Large portions of this script were taken from the | |
| # following artcile: | |
| # | |
| # http://usrportage.de/archives/919-Batch-generating-SSL-certificates.html | |
| # | |
| # Additional alterations by: Brad Landers | |
| # Date: 2012-01-27 |
| <?php | |
| define('FRESHDESK_SHARED_SECRET','____Place your Single Sign On Shared Secret here_____'); | |
| define('FRESHDESK_BASE_URL','http://{{your-account}}.freshdesk.com/'); //With Trailing slashes | |
| function getSSOUrl($strName, $strEmail) { | |
| $timestamp = time(); | |
| $to_be_hashed = $strName . FRESHDESK_SHARED_SECRET . $strEmail . $timestamp; | |
| $hash = hash_hmac('md5', $to_be_hashed, FRESHDESK_SHARED_SECRET); | |
| return FRESHDESK_BASE_URL."login/sso/?name=".urlencode($strName)."&email=".urlencode($strEmail)."×tamp=".$timestamp."&hash=".$hash; | |
| } |
