I'm trying to figure out a cron job which will copy a file (timthumb.php) from the root of ftp (above public_html) and recursively replace all existing instances of the file throughout the FTP. My linux and cron knowledge is minimal, so I'm hoping someone more experienced may be able to help with this. I'm also open to other ideas if someone has another method for doing this.
The master file would live at:
A cron would run daily to replace instances such as:
(We're assuming the instance will always be named timthumb.php, so there's no need to look into the content of the file)
The goal of this cron is to prevent old instances of timthumb from existing. I've already search via SSH and replaced all the instances on our accounts. The issue is if one of our clients decides to install a wordpress plugin, it may contain an old version of timthumb, recreating the vulnerability we removed.
Any help or ideas would be greatly appreciated
You can read about the timthumb exploit here: