It appears you have not registered with our community. To register please click here ...

Share
« previous next »
Pages: [1]

Author Topic: Protect Against r57shell PHP Exploit  (Read 3011 times)

ctwjr

  • Super Moderator
  • Jr. Member
  • **
  • Posts: 72
  • Karma: +10/-0
    • View Profile
    • http://www.ftplive.com
    • Email
Protect Against r57shell PHP Exploit
« on: September 18, 2006, 09:32:56 AM »
I have been hearing an aweful lot about the r57shell PHP Exploit ruining people\'s sites and even crashing entire servers!  I have a Linux server and would like to know what can I do to defend against R57Shell from a server admin perspective?
Logged

dynaweb

  • <b>Canine Deamon</b>
  • Administrator
  • Sr. Member
  • *****
  • Posts: 493
  • Karma: +10/-0
  • Generic personal text here ...
    • MSN Messenger - danno_d_manno@yahoo.com
    • View Profile
    • DynaWeb Designs
    • Email
RE: Protect Against r57shell PHP Exploit
« Reply #1 on: September 18, 2006, 09:54:04 AM »
There are different things that can be done to protect your server.  They include:
- php.ini disable_functions = shell_exec,system,proc_open
- mod_security with updated ruleset
- open_basedir restriction
- secured /tmp directories (noexec mount)
To be sure, check with your system administrator.
« Last Edit: July 08, 2010, 09:49:57 AM by dynaweb »
Logged
Those who cannot learn from history are doomed to repeat it. -- Linux learns.
Pages: [1]
« previous next »
 

Share