Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

PHP injected into server root 2

Status
Not open for further replies.
audiopro

audiopro

Programmer
Apr 1, 2004
3,165
0
0
GB
I recently had a malicious PHP script added to my server root.
I have all the usual input checking in place but it somehow still got through.
This is on a site which is only partially live.
Can anyone suggest somewhere to read up on prevention measures?

Keith
 
Sort by date Sort by votes
for cPanel


grep username /usr/local/cpanel/logs/access_log

Will list cpanel access times and actions for that account user

Chris.

Indifference will be the downfall of mankind, but who cares?
Time flies like an arrow, however, fruit flies like a banana.
Webmaster Forum
 
Upvote 0 Downvote
Nope. I despise cPanel with a passion. I'm perfectly capable of setting up web directories, MYSQL databases, and other configurations without a GUI. I hate phpmyadmin even more.

Give me SSH access any day.

----------------------------------
Phil AKA Vacunita
----------------------------------
Ignorance is not necessarily Bliss, case in point:
Unknown has caused an Unknown Error on Unknown and must be shutdown to prevent damage to Unknown.

Web & Tech
 
Upvote 0 Downvote
I will agree with your comment about PHPmyadmin but a server GUI is essential for those of us who are new to all of this.
Like many GUI's however, cPanel appears to have been written by geeks, for geeks and the instructions are only useful to those of you who don't actually need them.
Welcome to the world of modern computing.

Keith
 
Upvote 0 Downvote
Am I alone in hating those admin guis?
Click to expand...

No you aren't, but when you have clients that can, need to or want to manage their own hosting you have little choice but to provide a GUI for them. Letting them loose with shell access even when jailed/chroot'ed is simply asking for trouble.

Chris.

Indifference will be the downfall of mankind, but who cares?
Time flies like an arrow, however, fruit flies like a banana.
Webmaster Forum
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

SashaBuilder3
  • Locked
  • Question
import CSV file into MySql table in PhpMyAdmin
Replies
0
Views
114
SashaBuilder3
SashaBuilder3
PeDa
  • Locked
  • Question
unwanted spaces inserted into the middle of php-generated html email body 1
Replies
2
Views
58
PeDa
PeDa
PeDa
  • Locked
  • Question
Unwanted spaces in php HTML mail 1
Replies
4
Views
105
PeDa
PeDa
Mandy_crw
  • Locked
  • Question
How to send sms in PHP using usb gsm modem?
Replies
1
Views
118
vishvajit
vishvajit
lflynnlrf
  • Locked
  • Question
wordpress/ shortcode/ PHP duplicating code
Replies
1
Views
66
spamjim
spamjim

Part and Inventory Search

Sponsor

Back
Top