On Mon, 2004-11-22 at 23:54, Antonio Rodriguez wrote:
[...]
> I will need to use uploading of pictures in a website, and it seems to
> me that this was the window used by (who/what)ever entered. Do you
> have any recommendations about security measures related to this?
> May creating some chroot en
You might want to take a look at either mod_security
(libapache-mod-security, libapache2-mod-security) or mod_chroot
(libapache-mod-chroot) for the actual chroot.
As for files, I use makejail, but if you only need mod_php, then you
probably don't need to make any changes. If you need perl or mod_p
On Sun, Nov 21, 2004 at 05:02:43PM -0500, David Mandelberg wrote:
> [EMAIL PROTECTED] wrote:
> > the chroot step didn't work, rr webmail is being a pain, loging me out
> > every 5 sec, sorry if send this mail twice, dont know if it made it
> Hmm, it worked before though, are you sure you followed
That h-thing is what, a code for what?
:)
http://catb.org/~esr/jargon/html/
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
yeap, it is www-data. See next
www-data:x:33:33:www-data:/var/www/:/bin/sh
and
www-data:x:33:
It probably hapenned by allowing uploading of pictures through a perl script to
my server without proper security. STUPID mistake, if it is the reason. And
more stupid, if another mistake of mine.
T
[EMAIL PROTECTED] wrote:
> Access: (0660/-rw-rw) Uid: ( 33/www-data) Gid: ( 33/www-data)
Do this:
$ grep 33 /mnt/debian/etc/passwd
$ grep 33 /mnt/debian/etc/group
and email the user with uid 33 and the group with gid 33. If it actually
is www-data/www-data, then you've probably been h4x
Ok, it seems someone got in, don't know, here goes what you asked me for:
[EMAIL PROTECTED] mkdir /mnt/debian
[EMAIL PROTECTED] mount -o rw,exec -t auto /dev/hdb1 /mnt/debian
[EMAIL PROTECTED] chroot /mnt/debian /bin/bash
chroot: cannot run command `/bin/bash': Permission denied
[EMAIL PROTECTED]
[EMAIL PROTECTED] wrote:
> the chroot step didn't work, rr webmail is being a pain, loging me out every
> 5 sec, sorry if send this mail twice, dont know if it made it
Hmm, it worked before though, are you sure you followed the exact same
steps (mkdir /mnt/debian, then mount /dev/ /mnt/debian, the
the chroot step didn't work, rr webmail is being a pain, loging me out every 5
sec, sorry if send this mail twice, dont know if it made it
is chroot indispensible for the dpkg reinstallation?
Thanks david
[EMAIL PROTECTED] wrote:
> Well, I did it, but it didn't help. Still unable to boot. The corr
[EMAIL PROTECTED] wrote:
> Well, I did it, but it didn't help. Still unable to boot. The corresponding
> entry in fstab was changed to
> r,w,exec
That should be
rw,exec
If that doesn't fix it, try (in knoppix, after the chroot and mount -a):
# apt-get update
# apt-get install --reinstall `dpkg --
Well, I did it, but it didn't help. Still unable to boot. The corresponding
entry in fstab was changed to
r,w,exec
Even from the woody rescue cd couldn't get in, same response. Used a grub
floppy, tried to load another kernel, 2.4.20 i think, same response.
Any ideas what to do? Sunday, all are r
Try this from a knoppix xterm (or other terminal)
$ su
# mkdir /mnt/debian
# mount -o rw,exec -t auto /dev/ /mnt/debian
# chroot /mnt/debian /bin/bash
# mount -a
# /etc/fstab
make sure that / is mounting read-write and exec
[EMAIL PROTECTED] wrote:
> Running sid, computer went bananas. Gnome te
Running sid, computer went bananas. Gnome terminal
froze. Logged out from X. Couldn't come back.
Rebooteed. This is what happens:
INIT: cannot excute "/etc/init.d/rcS"
INIT: Entering runlevel:2
INIT: cannot execute "/etc/init/d/rc"
INIT: cannot execute "/usr/sbin/secvpnmon"
same same same
13 matches
Mail list logo
