Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Suspicious files in /tmp

From: Rainer Duffner <rainer () ultra-secure de>
Date: Tue, 19 Jun 2007 02:23:58 +0200

Am 18.06.2007 um 18:47 schrieb Matt D. Harris:
They're being executed despite filesystem mount options because the script isn't being executed, the perl interpretter is. The script is being 

I forgot:

mod_security seems to be able to block it, too.

But it needs some configuration - and it draws a bit performance.



cheers,
Rainer
--
Rainer Duffner
CISSP, LPI, MCSE
rainer () ultra-secure de



-------------------------------------------------------------------------
This list sponsored by: SPI Dynamics
ALERT: .How a Hacker Launches a SQL Injection Attack!.- White Paper It's as simple as placing additional SQL commands into a Web Form input box giving hackers complete access to all your backend systems! Firewalls and IDS will not stop such attacks because SQL Injections are NOT seen as intruders. Download this *FREE* white paper from SPI Dynamics for a complete guide to protection! 
https://download.spidynamics.com/1/ad/sql.asp?Campaign_ID=70160000000Cn8E
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: