Results 1 to 25 of 32
Hybrid View
-
16th February 2009 22:24 #1Registered User
Join Date: Feb:2009
Location: Bulgaria
Posts: 12
. . . !!!
Last edited by daniel5; 16th February 2009 at 23:11.
-
16th February 2009 23:57 #2
-
17th February 2009 00:06 #3
-
17th February 2009 00:16 #4
Make sure apache is running under its own user account and group
Several apache installations have it run as the user nobody. So suppose both Apache, and your mail server were running as nobody an attack through Apache may allow the mail server to also be compromised, and vise versa.
User apache
Group apache
Ensure that files outside the web root are not served
We don't want apache to be able to access any files out side of its web root. So assuming all your web sites are placed under one directory (we will call this /web), you would set it up as follows:
<Directory />
Order Deny,Allow
Deny from all
Options None
AllowOverride None
</Directory>
<Directory /web>
Order Allow,Deny
Allow from all
</Directory>
Note that because we set Options None and AllowOverride None this will turn off all options and overrides for the server. You now have to add them explicitly for each directory that requires an Option or Override.
Turn off directory browsing
You can do this with an Options directive inside a Directory tag. Set Options to either None or -Indexes
Options -Indexes- BACKUP!!!
-
17th February 2009 07:08 #5
-
17th February 2009 07:24 #6
-
17th February 2009 09:33 #7
-
17th February 2009 11:04 #8Registered User
Join Date: Jul:2005
Location: Sofiq
Posts: 2,798
Update , winBoz-a . , , , ... RPC, .
-
17th February 2009 11:16 #9Registered User
Join Date: Sep:2004
Location:
Posts: 78
html , .
?A.D.I.D.A.S.
-
17th February 2009 18:45 #10
-
17th February 2009 20:30 #11Registered User
Join Date: Feb:2009
Location: Bulgaria
Posts: 12
-
18th February 2009 16:47 #12
-
19th February 2009 00:58 #13Registered User
Join Date: Feb:2009
Location: Bulgaria
Posts: 12
-
19th February 2009 01:10 #14

You think you can hack me? Now You will eat the BANN!!
-
23rd February 2009 15:13 #15Registered User
Join Date: Feb:2009
Location: Bulgaria
Posts: 12
!!!
-
19th February 2009 01:22 #16Registered User
Join Date: Jun:2007
Location: Bulgaria
Posts: 128
remote shell. . , , PHP ili CGI , PL . , , , . 80- . .
-, search , string "shell".
. , firewall- . , . . , firewall-.
back-office. . CMS-, , "file manager", Windows Explorer, PHP . , .
.
""Last edited by djongo_bongo; 19th February 2009 at 01:35.
-
19th February 2009 13:57 #17
-
20th February 2009 00:05 #18Registered User
Join Date: Feb:2009
Location: Bulgaria
Posts: 12
-
19th February 2009 20:34 #19Registered User
Join Date: Jan:2009
Location:
Posts: 5,543
Btw - : New Folder.exe
Trojan.Hiween, W32/Floppy-E .. .. rootkit
-
25th February 2009 01:06 #20Registered User
Join Date: Jun:2007
Location: Bulgaria
Posts: 128
?
, .
, . , .
-
25th February 2009 03:52 #21Time is too slow for those who wait, too swift for those who fear, too long for those who grieve, too short for those who rejoice, but for those who love, time is eternity.
-
25th February 2009 19:25 #22
-
25th February 2009 21:52 #23Prolemuris
Join Date: Oct:2006
Location: Varna
Posts: 4,296
443 ? . , .
Last edited by vbdasc; 25th February 2009 at 21:57.
-
25th February 2009 23:25 #24Registered User
Join Date: Jul:2005
Location: Sofiq
Posts: 2,798
443 SSL, Remote Desktop. netstat -a -b, .
-
25th February 2009 23:42 #25
Remote Desktop e 3389.
- 443.
, , .EVGA X299 FTW K|i9-7960X@4.7|4x8 Patriot Viper Steel 4000|GTX 1660 Ti|970 EVO 1 TB|Seasonic Focus GX-1000|Xigmatek Elysium|
Rampage IV Extreme BE|E5-1680v2@4.7|4x4 HyperX 1866|Cougar Aqua 240|GTX 1050 Ti|970 EVO 1/4 TB|CM 850 SilentPro|HAF-X|






7th May 2023, 16:02 in PC