Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: How to know when you've been hacked
Special Forums Cybersecurity How to know when you've been hacked Post 302204556 by era on Thursday 12th of June 2008 02:43:34 AM
Old 06-12-2008
If at all feasible, the best thing would be if you could wipe and reinstall the servers. Stay informed on PHP security (now there's an oxymoron) and make sure you aren't running any known exploits in PHP itself or in the application you are using. If it was developed in-house, fire the developer, unless you have reason to believe that teaching her/him secure coding practices is less likely to fail than finding a qualified replacement (which is also almost certain to fail, I'm afraid).
 

3 More Discussions You Might Find Interesting

1. Linux

pc hacked

Hi, i think someone has hacked my server, the following rules used to come which i haven't put. Please help me i couldnt find out how this rules are apply, i think someone has put an script which generates enables the rules. But after restarting the iptables everything seems to be working... (0 Replies)
Discussion started by: naik_mit
0 Replies

2. Cybersecurity

Server hacked on known port

Hi, There is a recent case whereby it was reported that one of the production servers was hacked on port 1521. However, I am not sure how this was possible, as I checked that the OS firewall (iptables) is on : # /etc/init.d/iptables status Table: nat Chain PREROUTING (policy ACCEPT) num ... (7 Replies)
Discussion started by: anaigini45
7 Replies

3. Cybersecurity

Our system was hacked

Someone made a mistake, and left our router wide open, pointing all ports to a SCO 6.0.0 system. Within 24 hours, the following happened. The contents of all the files (except tar files) in three directories, one directory on each of three different file systems, were replaced with nulls. None... (3 Replies)
Discussion started by: jgt
3 Replies

LEARN ABOUT PHP

session_set_cookie_params

SESSION_SET_COOKIE_PARAMS(3)						 1					      SESSION_SET_COOKIE_PARAMS(3)

session_set_cookie_params - Set the session cookie parameters

SYNOPSIS

       void session_set_cookie_params (int  $lifetime, [string	$path], [string  $domain], [bool  $secure = false], [bool  $httponly = false])

DESCRIPTION

	Set  cookie  parameters defined in the php.ini file. The effect of this function only lasts for the duration of the script. Thus, you need
       to call session_set_cookie_params(3) for every request and before session_start(3) is called.

	This function updates the runtime ini values of the corresponding PHP ini configuration keys which can be retrieved with the ini_get(3).

PARAMETERS

	      o $lifetime
		-Lifetime of the session cookie, defined in seconds.

	      o $path
		-Path on the domain where the cookie will work. Use a single slash ('/') for all paths on the domain.

	      o $domain
		- Cookie domain, for example 'www.php.net'. To make cookies visible on all subdomains then the domain must be prefixed with a  dot
		like '.php.net'.

	      o $secure
		- If TRUE cookie will only be sent over secure connections.

	      o $httponly
		- If set to TRUE then PHP will attempt to send the httponly flag when setting the session cookie.

RETURN VALUES

	No value is returned.

CHANGELOG

       +--------+-------------------------------------+
       |Version |				      |
       |	|				      |
       |	|	      Description	      |
       |	|				      |
       +--------+-------------------------------------+
       | 5.2.0	|				      |
       |	|				      |
       |	|  The $httponly parameter was added. |
       |	|				      |
       +--------+-------------------------------------+
SEE ALSO

       session.cookie_lifetime,     session.cookie_path,     session.cookie_domain,	session.cookie_secure,	  session.cookie_httponly,    ses-
       sion_get_cookie_params(3).

PHP Documentation Group 											      SESSION_SET_COOKIE_PARAMS(3)
All times are GMT -4. The time now is 09:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy