LinuxQuestions.org
Visit Jeremy's Blog.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page Apache2 + Php4 Security Problem
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 09-14-2007, 06:58 AM   #1
muex
LQ Newbie
 
Registered: Feb 2006
Posts: 1

Rep: Reputation: 0
Apache2 + Php4 Security Problem

Hi My Friends;


Someone is adding html and php pages in my virtualhosts with using www-data user. How can i solve this security problem ?

Thanks for your answers.
 
Old 09-18-2007, 08:18 PM   #2
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
The best place to start is your logs. The attack vector was most like found by trial and error. Look through your error logs to find source IP addresses that have frequent errors, and then go back and see what requests they successfully recieved. Look for requests that have URLs appended to them. These are typically remote file includes. Sometimes they are written to the file system and sometimes they are launched and deleted. See if you can duplicate the behavior. It's tedious, but it'll help you find how those files got there.

If you have any common open source web apps installed, check to make sure that your site is at the current recommended revision level. Apply any patches or work-arounds for known issues. For your custom code, make sure that you validate all form inputs.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
apache2 / PHP4 install problem Mycado Linux - Software 7 07-23-2006 02:47 PM
apache2 + php4 atheist Linux - Software 6 10-25-2004 03:12 PM
a problem with php4 under apache2 aswanjaguar Linux - Software 4 09-22-2004 03:15 PM
php4 with apache2? the debian way, how? Tisch Debian 4 08-19-2004 09:35 AM
RedHat8->Apache2->PHP4->Extension (_Unwind_Resume) problem TimeSaver Programming 0 03-19-2003 01:07 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:25 AM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration