Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: List of HTTP/FTP-clients on a server
Special Forums Cybersecurity List of HTTP/FTP-clients on a server Post 84695 by indo1144 on Wednesday 28th of September 2005 05:12:19 AM
Old 09-28-2005
Quote:
Originally Posted by LanceBoyles
lftp and snarf are the only other ones I can think of off the top of my head.

Did you remove the vulnerable PHP script? You really should consider rebuilding that box from scratch and restoring from pre-compromise backup in the event that trojaned programs or backdoors were installed that you didn't detect.
The box could not be brought down, since it was a production-machine for my friend, who hosts websites on it. His businesspartner could not be pursuaded to bring the box down while investigating the incident.
Bitter irony... the box died a week later and had some hardware replaced and its OS newly installed... It's clean now... Smilie

I tried to close the box as much as I could and in the end I was very happy with the result (and not to mention the enormous amount of "hacker-goodies" that were left behind). A very good learning-experience!

We did remove the PHP-script, which was part of a PHP-Nuke photo-gallery and asked the owner to look for either a non-vulnerable version of find another gallery. Furthermore, my friend started using a firewall on the box itself and uses very strict rules now.

I also created a script that continuously checks if user "httpd" runs any other software than the webserver itself (which is how I found out about the hack in the first place) and this script was very userful in finding other hidden scripts. I must admit that those trojans are cleverly hidden and are a nice piece of work!

Anyway, thanks for the addition to my list!
 

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

FTP from AIX to 20 Windows clients

I have got a unix server ( AIX ) and 20 clients ( windows 2000 ) . I have to transfer a file through FTP from the server to each of 20 clients daily to check the network speed. But each time I do ftp, I have to enter username and password and then transfer the file using "put <filename>". I... (2 Replies)
Discussion started by: sharuvman
2 Replies

2. UNIX for Advanced & Expert Users

how to know how many user's connected to ftp and http server

i need to write a program to know how many users are presently connected to my ftp server and http server . i need to keep a count of this and this count should be available to other different software . how to make this GLOBAL so that other softwares can access this count value (7 Replies)
Discussion started by: hariprasad
7 Replies

3. Solaris

Solaris 8 server and Jumpstarting 2.6 clients

Ladies and Gentlemen: I have successfully configured a Solaris 8 server with Jumpstart! I can Jumpstart Solaris 8 client systems with no problem. My configuration is as follows: Jumpstart Server: Solaris 8 patched with Recommended Patches from June 05. I have installed Solaris 8 in... (4 Replies)
Discussion started by: rambo15
4 Replies

4. Shell Programming and Scripting

list files on a server ftp

Hello, I would want to list files of an server FTP with the path of the file... i try "ls -R" but ftp don't accept this command... Is it possible with curl command ??? Regards. (5 Replies)
Discussion started by: protocomm
5 Replies

5. AIX

IPsec from one AIX server to many windows clients

I work for a fairly large organization who recently tasked me with securing our telnet services with IPsec. We have a large mixed environment where most of our servers are running unsecured telnet. ssh was my first suggestion but because of the cost of purchasing an enterprise license for a fips... (2 Replies)
Discussion started by: dgaixsysadm
2 Replies

6. Shell Programming and Scripting

Help needed to transfer list of files to FTP server, to different folders

Hello Unix Gurus, Help required from you. My requirement is something like this I want to create a concurrenct program in Oracle Applications using shell script to transfer files from Apps Server to destination FTP server. I have created custom program, where I will extract all the... (4 Replies)
Discussion started by: amazon
4 Replies

7. IP Networking

Some clients cannot ping UNIX server

All of sudden in this morning, some computers could not connect to our UNIX server while other still could. Some computers could ping the server while some could not. Same on the server side. It could ping some clients but not some. All Windows clients could ping each other. And more, the... (1 Reply)
Discussion started by: jonapa
1 Replies

8. Programming

Clients - Server ( UDP )

Hello, I have a question: I want to create a n client to one server connection. This is the client-server algorithm. Enybody help to make the changes? (0 Replies)
Discussion started by: MaHmur
0 Replies

9. UNIX for Dummies Questions & Answers

Unmounting NFS idle clients from server

Hello World, We have a software repository server in our environment which we use as an NFS server. Now this has been going on well before I was hired. Now, I observed many users not unmounting the NFS resources after their use. I ran showmount and it showed 513 current sessions. :wall: Is... (7 Replies)
Discussion started by: satish51392111
7 Replies

LEARN ABOUT SUSE

tnm::http

http(n) 							 Tnm Tcl Extension							   http(n)

__________________________________________________________________________________________________________________________________________________

NAME

       http - Send and process HTTP requests.
_________________________________________________________________

DESCRIPTION

       The  Hypertext  Transfer Protocol (HTTP) (RFC 1945) is a client/server protocol used to retrieve documents in the World Wide Web. Documents
       are addressed using Uniform Resource Locators (URL) (RFC 1738). The http command allows to implement HTTP clients and a simple HTTP server.

HTTP COMMAND

       The following list of http commands is useful for HTTP clients:

       http proxy [url]
	      The http proxy command allows to define a proxy HTTP server which will be used in subsequent client  commands.  Using  this  command
	      without  an url argument will return the URL to the currently used proxy or an empty string. Providing a url argument sets the proxy
	      server.  Setting the proxy to an empty string turns the proxy feature off.

       http head url
	      The http head command retrieves the HTTP header for the document located at url. The header is returned as a list of keys and values
	      which can be converted into a Tcl array using the array set command.

       http get url fileName
	      The http get command retrieves the document located at url. The body of the document is written to the file named fileName. The com-
	      mand returns the HTTP header as described for the http head command above.

       http post url docFileName fileName
	      The http post command posts the document in docFileName to the location url. The body of the returned document  is  written  to  the
	      file named fileName. The command returns the HTTP header as described for the http head command above.

       http put url docFileName
	      The  http put command puts the document in docFileName to the location url. The command returns the HTTP header as described for the
	      http head command above.

       http delete url
	      The http delete command deletes the document at the location defined by url. The command returns HTTP status information.

       The following set of http commands is useful for a simple HTTP server:

       http server [port]
	      The http server command starts a simple HTTP server listening on port port. If called without a port argument,  the  currently  used
	      port number or an empty string is returned. An empty string indicates that no server is currently active.

       http mime type extension
	      The  http  mime  command is used to add mime type definitions to the internal table which maps file name extension to mime types. If
	      called without an argument, the list of all mime type mappings is returned. A new mapping is created by supplying a  mime  type  and
	      the file name extension.

       http bind pattern method [script]

	      The  http  bind command binds a Tcl script to the invocation of a HTTP method where the URL matches pattern. Whenever a HTTP request
	      of type method is received that matches the pattern, script is evaluated. The return value of the script must be a name  of  a  file
	      which will be send back to the client. Errors during the evaluation of the script will result in an error response.

	      The following % sequences are substituted before a script bound to a URL is evaluated:

	      %A    The network address of the client.

	      %P    The URL path requested by the client.

	      %S    The search path contained in the URL path.

SEE ALSO

       scotty(1), Tnm(n), Tcl(n)

AUTHORS

       Juergen Schoenwaelder <schoenw@cs.utwente.nl>

Tnm																	   http(n)
All times are GMT -4. The time now is 07:25 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy