Archive for 'Linux'
ROOT_PATH vulnerabilities.
In PHP there is a vulnerability involving the ROOT_PATH include. It bascially allows via poor coding and a well constructed querystring to pass a file to PHP from a remote server and execute the code. As an example the included file could be used to send spam or phishing email be routing it internally through [...]
Posted: May 25th, 2006 under Firewalls and Security, Linux, PHP.
Comments: none
blocking unfriendly traffic
If you think some wierd traffic is coming to your server, you can use netstat and ps to find evil programs, ports, and ips. Besides killing processes with the usual kill command you might try adding some rule to iptables while you investigate netstat -lntpe ps -auxfw Drops a port (in this example 3131) iptables [...]
Posted: February 9th, 2006 under Firewalls and Security, Linux.
Comments: none
Exim outbound queue is HUGE
show the count of messages in queue exim -bpc list the messages in queue exim -bp These can selectively delete messages from the queue if the message is frozen exim -bpru|grep frozen|awk {‘print $3′}|xargs exim -Mrm if the message is exim -bpru|grep ”|awk {‘print $3′}|xargs exim -Mrm if all exim -bpru|awk {‘print $3′}|xargs exim -Mrm
Posted: February 9th, 2006 under Exim, Linux.
Comments: none