ConfigServer Community Forum

Peer support forums for ConfigServer Scripts
https://mail.forum.configserver.com/

How we can close commad ls and cat and .. ?

https://mail.forum.configserver.com/viewtopic.php?t=195

Page 1 of 1

How we can close commad ls and cat and .. ?

Posted: 19 Jan 2007, 16:38
by robocap
Hello,
i have dedicated server and install csf and lfd

will time i upload one shell c99 on server and run them,and in part :: Command execute :: and enter cat /var/cpanel/accounting.log, i can see all user and all site in my server

and if i enter command ls /home/[user]/public_html i can enter to any user that want

Do you have away ?
i close them,until hacker can`t see all site and see all files server

Thanks

Posted: 20 Jan 2007, 10:07
by chirpy
You would have to enable phpsuexec to prevent users browsing outside of their accounts like that. That's one of the major security flaws with PHP.

Posted: 20 Jan 2007, 10:13
by robocap
Hello,
means will time i want update apache,must select PHP suEXEC Support and click on start build?

i think PHP suEXEC Support maybe create problem for all user
Do you think?

i have a problem by hacker shell files

Posted: 23 Jan 2007, 11:10
by niyaz
Hello

i have a decated server
and i have a problem by hacker shell files............ Too

i Build apachi and enable phpsuexec

but hacker can hack me again


please help me !

thankS
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited