LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-07-2012, 08:54 PM   #1
nuliknol
Member
 
Registered: Jul 2009
Posts: 32

Rep: Reputation: 0
ssh through a .php, backdoor


Hi,
I have an apache + php server running and I want to install a backdoor. I am the root of the server, but I want to have a backdoor in case I lose root password or somebody hacks me. So, I was thinking to install a .php script somewhere deep down under DOCUMENT_ROOT that does exec() of some command that would convert the 'httpd' process into 'sshd' process but leaving the filedescriptor of open connection on port 80. On the client side, I would use my own program made in C , that would telnet to port 80 and also exec() ssh client. So my question is, is it possible to take a web connection and replace it with ssh on both ends ?

Would be this too difficult? Have someone did something like this?

Thanks in advance.
Nulik
 
Old 10-07-2012, 09:09 PM   #2
NyteOwl
Member
 
Registered: Aug 2008
Location: Nova Scotia, Canada
Distribution: Slackware, OpenBSD, others periodically
Posts: 512

Rep: Reputation: 138Reputation: 138
It could be done but would be rather dangerous, even using SSL. And if the point is secure access do not use telnet as passwords are sent in clear text. Why not just run sshd for remote access?
 
Old 10-08-2012, 03:20 AM   #3
arun5002
Member
 
Registered: Aug 2011
Location: Chennai,India
Distribution: Redhat,Centos,Ubuntu,Dedian
Posts: 549
Blog Entries: 5

Rep: Reputation: Disabled
hI,

Quote:
that would telnet to port 80
Its not advised to use telnet to login into server .Normally the data tranmitted via telnet is unencrypted(Plain-text) Format.Its better advise to use SSH sets up encrypted data transfer and logins and is more secure.Even normall ssh login is not a better paractice.SSH passwordless login is advised .What your currently trying out ,could mainly leads to hacking off your server
 
Old 10-08-2012, 08:46 AM   #4
Noway2
Senior Member
 
Registered: Jul 2007
Distribution: Ubuntu 10.10, Slackware 64-current
Posts: 2,124

Rep: Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776Reputation: 776
What you are describing sounds a lot like port knocking.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Backdoor to server? Joe of Loath Linux - Server 16 11-29-2010 06:36 AM
Trojan program Backdoor.PHP.C99Shell.p austrumi b4gi Linux - Security 5 01-21-2008 12:01 PM
Yet another backdoor for IE.... r_jensen11 General 11 06-29-2004 11:31 AM
backdoor im1crazyassmofo Linux - General 3 01-16-2003 06:54 PM
SSH 2 as a backdoor? help me fenris@bu Linux - Security 3 05-24-2001 12:12 PM


All times are GMT -5. The time now is 05:56 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration