Web hosting security question Post: 302543816

Sponsored Content

Special Forums Cybersecurity Web hosting security question Post 302543816 by sysgate on Tuesday 2nd of August 2011 06:57:56 AM

08-02-2011

Registered User

Sorry, I'm not going to download all these web resources, just to check what they might possibly do. It's some sort of root access acquisition attempt or similar, but what's most important is that you should secure your site.

Hosting companies do not often offer support on private owners issues like security, but rather they are responsible only for the hosting environment, though some UAP might suggest proactive measures being undertaken in order to avoid bigger incident.
Back in my security officer days, I have personally disabled / renamed insecure customer scripts / pieces of code, as spammers, for example, are very keen to use them in a short periods of time, which usually causes this particular hosting server to get blacklisted at major providers.

So, bottom line - inspect your site, if you are sure (got a confirmation) that this is isolated issue, and not a hosting env. one.

sysgate

View Public Profile for sysgate

Find all posts by sysgate

4 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Web page hosting

I built my website based on Dreamweaver, on Windows platform. My server uses Unix, and the page doesn't look too good. Is there any way to solve this problem without too much of a headache?

2. Cybersecurity

Web hosting security

Hello, guys ! The company I work for has a few web hosting servers and I'd like to know how can I secure the servers a little bit ? The situation is like this: Apache runs as nobody so all users can run scripts as nobody. This is a big security problem beacause if I have an account on the...

3. Web Development

ASP.NET 5 Application on Centos OS7 Web Hosting Server

Hi All, Frankly I'm new to Linux Environment. While we are trying to Host an ASP.NET 5 Web Application on Centos OS7 Web hosting Server. There were couple of steps which we are supposed to go through, please see this link - We are stuck at Create a Container & then Running the Container,...

4. Shell Programming and Scripting

Ldap connection after hosting on Web Server

Hi.. I have very limited knowledge on LDAP and its configuration and but I have been trying to figure out one issue that takes place when I am running the program that is written in php, but so far its unsuccessful. The server, I am working on is ldap server, which is running on Apache. After...

LEARN ABOUT PHP

fdf_get_attachment

FDF_GET_ATTACHMENT(3)							 1						     FDF_GET_ATTACHMENT(3)

fdf_get_attachment - Extracts uploaded file embedded in the FDF

SYNOPSIS

       array fdf_get_attachment (resource  $fdf_document, string  $fieldname, string  $savepath)

DESCRIPTION

	Extracts a file uploaded by means of the "file selection" field $fieldname and stores it under $savepath.

PARAMETERS

	      o $fdf_document
		- The FDF document handle, returned by fdf_create(3), fdf_open(3) or fdf_open_string(3).

	      o $fieldname
		-

	      o $savepath
		-  May be the name of a plain file or an existing directory in which the file is to be created under its original name. Any exist-
		ing file under the same name will be overwritten.

	      Note

		      There seems to be no other way to find out the original filename but to store the file using a directory	as  $savepath  and
		     check for the basename it was stored under.

RETURN VALUES

	The returned array contains the following fields:

	      o$path - path were the file got stored

	      o$size - size of the stored file in bytes

	      o$type - mimetype if given in the FDF

EXAMPLES

       Example #1

	      Storing an uploaded file

	      <?php
		$fdf = fdf_open_string($HTTP_FDF_DATA);
		$data = fdf_get_attachment($fdf, "filename", "/tmpdir");
		echo "The uploaded file is stored in $data[path]";
	      ?>

PHP Documentation Group 												     FDF_GET_ATTACHMENT(3)