Security Basics mailing list archives

Re: Strange found in apache error.log

From: ascii <ascii () katamail com>
Date: Mon, 05 Dec 2005 19:03:19 +0100

kc () mikrobit pl wrote:

How could they get and run that scripts ??


via php exec/system/backtrick/etc.. for example

in error.log you will find any stderror generated
by php exec, thus these are script kiddies because
a simple 2>&1 appended to the string let your logs
clean

are you providing vhost hosting? read some docs
and harden your system

also moving wget and nc from the $PATH to /root
isn't a so bad idea

ascii - http://www.ush.it/

Current thread:

Strange found in apache error.log kc (Dec 05)
- Re: Strange found in apache error.log ascii (Dec 05)
- Re: Strange found in apache error.log Security (Dec 05)
- Re: Strange found in apache error.log Gaddis, Jeremy L. (Dec 06)
- Root kits and host.deny Frynge.com Support (Dec 08)
  - Re: Root kits and host.deny Scott B (Dec 08)
  - Re: Root kits and host.deny Jeff Davis (Dec 08)
  - Re: Root kits and host.deny Edward Krack (Dec 12)
  - Re: Root kits and host.deny Gaddis, Jeremy L. (Dec 12)
    - Message not available
    - Re: Root kits and host.deny Gaddis, Jeremy L. (Dec 13)
- <Possible follow-ups>
- Re: Strange found in apache error.log arron (Dec 05)
- RE: Strange found in apache error.log Miguel Dilaj (Dec 06)