being hacked! help!
Someone uploaded a file (a.php.gz) in my server. It was uploaded throught the coppermine gallery. Unfortunately it caused a great number of mysql connections and my websites were down for a few hours.
I have some things to clear out so that I will be sure that this will not happen again. The a.php.gz file is a kind of file manager with many features. How can the gz file being executed as a php file since it has a different extension?
How can I find out the user who caused all the mysql connetctions? I checked the mysqld.log file but did not find any info.
