Login or Register to Ask a Question and Join Our Community


Shell Programming and Scripting

grep and check uploads

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums Shell Programming and Scripting grep and check uploads
# 1  
Old 05-18-2008
grep and check uploads
Hi,


In suhosin php hardening patch there is an option of scanning uploaded files via php or web.


upload verification_script
==============================
*
Type: String
*
Default:

This defines the full path to a verification script for uploaded files. The script gets the temporary filename supplied and has to decide if the upload is allowed. A possible application for this is to scan uploaded files for viruses. The called script has to write a 1 as first line to standard output to allow the upload. Any other value or no output at all will result in the file being deleted.


On a systme with suhosin installed we add In php.ini

suhosin.upload.verification_script = /path-to-scanner.


Can you please advise a scanner script that will scan for:

1) viruses using clamscan

2) grep the uploaded file for certain malicious patterns and if it matches the pattern, the file is deleted

example pattern:

pattern='r0nin|m0rtix|upl0ad|r57shell|c99shell|shellbot|phpshell|void\.ru|phpremoteview|directmail|b ash_history|\.ru/|brute *force|multiviews|cwings|bitchx|eggdrop|guardservices|psybnc|dalnet|undernet|vulnscan|spymeta|raslan 58'

3) email report if it finds any virus or malicious pattern



Thanks
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Grep: check if a string comes up twice

I have the following files list.txt string1<TAB>ABC string2<TAB>DEF string3<TAB>GHIquery.txt ABC DEF GHI ABCNow I want to check, if a string in the first column of list.txt is twice in query.txt so my command is: while IFS=$'\t' read k v ; do if (($(grep -i '$v' query.txt | wc... (2 Replies)
Discussion started by: tons92
2 Replies

2. Shell Programming and Scripting

ignore fields to check in grep

Hi, I have a pipe delimited file. I am checking for junk characters ( non printable characters and unicode values). I am using the following code grep '' file.txt But i want to ignore the name fields. For example field2 is firstname so i want to ignore if the junk characters occur... (4 Replies)
Discussion started by: ashwin3086
4 Replies

3. Infrastructure Monitoring

Blocking File Uploads with Squid

Dear All I want to block email attachments upload on internet through different mail servers. My requirement is that no user can send email attachments on yahoo, hotmail, gmail etc. I have RHEL-5 and squid 2.7. I have applied the undermentioned ACL but it in vain ACL is acl fileupload... (2 Replies)
Discussion started by: surfer24
2 Replies

4. Shell Programming and Scripting

GREP a directory to check for uppercase

Hello All, I am trying to write a script to search in my current directory to look for all files that end with HTML and look for any HTML tags that are in upper case. for example if I were to grep test.html and test.html has a tag <P> instead of <p> then it would print the file name. This is... (11 Replies)
Discussion started by: rawmaterial
11 Replies

5. Shell Programming and Scripting

Shell script to monitor tmp folder for uploads

Hello, We have been having some issues with our users overwriting files, and then not having a backup. What I would love to do, is create a shell script to monitor /tmp, for uploads, and make a copy of the file they are trying to upload before the upload finishes. Is this possible at all? (6 Replies)
Discussion started by: mrfr0g
6 Replies

6. Shell Programming and Scripting

monitor daily file uploads

hey all, i am a shell scripting n00b so bear with me. i got a server that every night uploads one file to a remote server. the file is prodserver_date_time. i would like to make a script, run by root on a daily cron job. i want it to determine if the file was received or not. no md5... (2 Replies)
Discussion started by: jweinraub
2 Replies

7. Linux

vsftpd hiding partial uploads

Is there any mechanism within vsftpd to hide partially uploaded files, ie give them a hidden file name. Pro ftp has this option with the hidden stor option in the configuration file. If there is no such feature how do I go about requesting that the vsftpd developers create this option or is... (3 Replies)
Discussion started by: jhod22
3 Replies

8. OS X (Apple)

OSX uploads to 2000 server extremly slow

We have just added 5 macs to what used to be an all Windows shop. Everything works great except the macs upload to a windows 200 file server extremly slow. Are there any suggestions to make the upload faster? (2 Replies)
Discussion started by: wbeard6142
2 Replies

9. Cybersecurity

Creating a Password-Protected directory for ftp Uploads & Downloads

Hello All! Am new here; please excuse any blunders! Am dealing with an off-site ISP UNIX server on which no Telnet access and no Anonymous FTP access is allowed, and which is hosting a client web site. Need to create a separate area within that site to hold occasional outside ftp uploads... (3 Replies)
Discussion started by: NAL
3 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

mojo::upload

Mojo::Upload(3pm)					User Contributed Perl Documentation					 Mojo::Upload(3pm)

NAME

       Mojo::Upload - Upload container

SYNOPSIS

	 use Mojo::Upload;

	 my $upload = Mojo::Upload->new;
	 say $upload->filename;
	 $upload->move_to('/home/sri/foo.txt');

DESCRIPTION

       Mojo::Upload is a container for uploads.

ATTRIBUTES

       Mojo::Upload implements the following attributes.

   "asset"
	 my $asset = $upload->asset;
	 $upload   = $upload->asset(Mojo::Asset::File->new);

       Asset containing the uploaded data, defaults to a Mojo::Asset::File object.

   "filename"
	 my $filename = $upload->filename;
	 $upload      = $upload->filename('foo.txt');

       Name of the uploaded file.

   "headers"
	 my $headers = $upload->headers;
	 $upload     = $upload->headers(Mojo::Headers->new);

       Headers for upload, defaults to a Mojo::Headers object.

   "name"
	 my $name = $upload->name;
	 $upload  = $upload->name('foo');

       Name of the upload.

METHODS

       Mojo::Upload inherits all methods from Mojo::Base and implements the following new ones.

   "move_to"
	 $upload->move_to('/home/sri/foo.txt');

       Alias for "move_to" in Mojo::Asset::File.

   "size"
	 my $size = $upload->size;

       Alias for "size" in Mojo::Asset::File.

   "slurp"
	 my $string = $upload->slurp;

       Alias for "slurp" in Mojo::Asset::File.

SEE ALSO

       Mojolicious, Mojolicious::Guides, <http://mojolicio.us>.

perl v5.14.2							    2012-09-05							 Mojo::Upload(3pm)