This means that this is related to php only and not ispconfig and that your server is secure when you install the php updates of your linux distribution regularily.
Yes, is CLEAR that is relative to the php, but I ask, therefore this is not the exploit about we are talking?
Move to Centos/Nginx was a great solution As Til said, Debian updates don't break things, however Debian upgrades do which is why I was stuck with Lenny which didn't have an update for php which led to this hack. I'm loving those daily updates on Centos, and I'm seeing lots of 0 server load on a similarly spec'd sever with Centos/Nginx--yeah, I'm now a Centos/Nginx fanboy
