Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Web hosting security question
Special Forums Cybersecurity Web hosting security question Post 302543816 by sysgate on Tuesday 2nd of August 2011 06:57:56 AM
Old 08-02-2011
Sorry, I'm not going to download all these web resources, just to check what they might possibly do. It's some sort of root access acquisition attempt or similar, but what's most important is that you should secure your site.

Hosting companies do not often offer support on private owners issues like security, but rather they are responsible only for the hosting environment, though some UAP might suggest proactive measures being undertaken in order to avoid bigger incident.
Back in my security officer days, I have personally disabled / renamed insecure customer scripts / pieces of code, as spammers, for example, are very keen to use them in a short periods of time, which usually causes this particular hosting server to get blacklisted at major providers.

So, bottom line - inspect your site, if you are sure (got a confirmation) that this is isolated issue, and not a hosting env. one.
 

4 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Web page hosting

I built my website based on Dreamweaver, on Windows platform. My server uses Unix, and the page doesn't look too good. Is there any way to solve this problem without too much of a headache? (1 Reply)
Discussion started by: PCL
1 Replies

2. Cybersecurity

Web hosting security

Hello, guys ! The company I work for has a few web hosting servers and I'd like to know how can I secure the servers a little bit ? The situation is like this: Apache runs as nobody so all users can run scripts as nobody. This is a big security problem beacause if I have an account on the... (4 Replies)
Discussion started by: Sergiu-IT
4 Replies

3. Web Development

ASP.NET 5 Application on Centos OS7 Web Hosting Server

Hi All, Frankly I'm new to Linux Environment. While we are trying to Host an ASP.NET 5 Web Application on Centos OS7 Web hosting Server. There were couple of steps which we are supposed to go through, please see this link - We are stuck at Create a Container & then Running the Container,... (1 Reply)
Discussion started by: John Fredric
1 Replies

4. Shell Programming and Scripting

Ldap connection after hosting on Web Server

Hi.. I have very limited knowledge on LDAP and its configuration and but I have been trying to figure out one issue that takes place when I am running the program that is written in php, but so far its unsuccessful. The server, I am working on is ldap server, which is running on Apache. After... (1 Reply)
Discussion started by: GomathiUoM
1 Replies

LEARN ABOUT SUNOS

ftpservers

ftpservers(4)							   File Formats 						     ftpservers(4)

NAME

       ftpservers - FTP Server virtual hosting configuration file

SYNOPSIS

       /etc/ftpd/ftpservers

DESCRIPTION

       The  ftpservers file is used to configure complete virtual hosting. In contrast to limited virtual hosting, complete virtual hosting allows
       separate configuration files to be specified for each virtual host.

       The set of configuration files for each virtual host are placed in their own directory. The ftpservers file associates the address of  each
       virtual host with the directory its configuration files are stored in. The virtual host configuration files must be named:

       ftpaccess	       Virtual host's access file

       ftpusers 	       Restricts the accounts that can use the virtual host

       ftpgroups	       Virtual hosts enhanced group access file

       ftphosts 	       Allow or deny usernames access to the virtual host

       ftpconversions	       Customize conversions available from the virtual host

       You  do not need to put every file in each virtual host directory. If you want a virtual host to use the master copy of a file, then do not
       include it in the virtual host directory. If the file is not included, the master copy from the /etc/ftpd directory will be used.

       The file names must match exactly. If you misspell any of  them or name them differently, the server will not find  them,  and  the  server
       will use the master copy instead.

       The ftpaddhost utility is an administrative tool to configure virtual hosts. See ftpaddhost(1M).

   File Format
       There are two fields to each entry in the ftpservers file:

       address	 directory-containing-configuration-files

       For example:

       10.196.145.10	/etc/ftpd/virtual-ftpd/10.196.145.10
       10.196.145.200	/etc/ftpd//virtual-ftpd/10.196.145.200
       some.domain	INTERNAL

       When  an  FTP client connects to the FTP Server, in.ftpd(1M) tries to match the IP address to which the FTP client connected with one found
       in the ftpservers file.

       The address can be an IPv4 or IPv6 address, or a hostname.

       If a match is found, The FTP server uses any configuration files found in the associated directory.

       If a match is not found,  or an invalid directory path is encountered,  the default paths to the configuration files are used. The  use	of
       INTERNAL in the example above fails the check for a specific directory, and the master configuration files will be used.

       Either  the  actual IP address or a specific hostname can be used to specify the virtual host. It is better to specify the actual IP of the
       virtual host, as it reduces the need for a domain lookup and eliminates DNS security related naming issues, for example:

       10.196.145.20	 /etc/ftpd/config/faqs.org/
       ftp.some.domain	 /etc/ftpd/config/faqs.org/

       Lines that begin with a # sign are treated as comment lines and are ignored.

FILES

       /etc/ftpd/ftpservers

ATTRIBUTES

       See attributes(5)  for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWftpr			   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |External			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       ftpaddhost(1M), in.ftpd(1M), ftpaccess(4), ftpconversions(4), ftpgroups(4), ftphosts(4), ftpusers(4), attributes(5)

SunOS 5.10							    1 May 2003							     ftpservers(4)
All times are GMT -4. The time now is 04:12 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy