The UNIX and Linux Forums  

Go Back   The UNIX and Linux Forums > Special Forums > Security
List of HTTP/FTP-clients on a server List of HTTP/FTP-clients on a server
.
google unix.com

Forums Register Forum RulesLinksAlbums FAQ Members List Calendar Search Today's Posts Mark Forums Read


Security Discuss UNIX and Linux computer and network security, cybersecurity, cyberattacks, IT security, CISSP, OWASP and more.

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
NTP server with aix & wintel clients chongkls77 AIX 0 09-05-2007 10:53 PM
Map Drive from UNIX Server to Windows Clients kafaween UNIX for Dummies Questions & Answers 3 09-12-2006 11:37 AM
SUSE 9 and 10 NIS clients with RedHat 8.0 NIS server not working fishsponge UNIX for Advanced & Expert Users 1 12-13-2005 10:13 AM
HTTP server jaibw Linux 4 11-21-2005 05:37 AM
Solaris 8 server and Jumpstarting 2.6 clients rambo15 SUN Solaris 4 07-15-2005 06:36 PM

 
English Japanese Spanish French German Portuguese Italian Dutch Swedish Russian Norwegian Hungarian Hebrew Danish Bulgarian Greek Powered by Powered by Google
 
LinkBack Thread Tools Search this Thread Rate Thread Display Modes
Prev Previous Post   Next Post Next
  #1 (permalink)  
Old 09-26-2005
indo1144's Avatar
indo1144 indo1144 is offline
Registered User
  
 

Join Date: Jun 2002
Location: Netherlands
Posts: 54
List of HTTP/FTP-clients on a server
The other day, a friend of mine had his Linux webserver compromised because he was running a vulnerable PHP-script. The "hacker" had used a malformed URL to include a wget-command to fetch some stuff off the net and install it in /dev/shm where it ran undetected. Fortunately, the webserver ran as a non-priviledged user, so no serious harm was done.

I cleaned his machine for him and took some preventive measures.

I mounted /dev/shm noexec and I moved (what I thought) all HTTP- and FTP-clients to /root/bin and symlinked those from their original location. This way, only the root-user can use these clients. However... my list of clients was not complete and the "hacker" tried once again (using GET) to compromise the system. This time he failed though, because /dev/shm did not allow execution of his scripts.

The clients I moved to /root/bin included:
  • links
  • lynx
  • wget
  • curl
  • GET (the one I initially forgot)
  • ftp
  • tftp
  • lftp thanks to LanceBoyles
  • snarf thanks to LanceBoyles

but I somehow feel this list is not complete.

Can you help me assemble a complete list of all clients that can be used to download stuff off the net.
Last edited by indo1144; 09-28-2005 at 06:15 AM..
 

Bookmarks

« Logging htaccess | Apache Question - Securing against unwanted use with cable modem »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Threaded Mode Threaded Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -4. The time now is 06:21 PM.

The UNIX and Linux Forums - Learn UNIX and UNIX Commands RSS Feeds - Contact Us - The UNIX and Linux Forums - Learn UNIX and UNIX Commands - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited. Language Translations Powered by .
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The UNIX and Linux Forums Content Copyright ©1993-2009. All Rights Reserved.Ad Management by RedTyger

Content Relevant URLs by vBSEO 3.2.0