Re: [users@httpd] attack on apache

2012-01-11 Thread Jaco Kroon
Hi, On 12/01/12 00:14, Jeroen Geilman wrote: On 01/11/2012 10:10 PM, Jaco Kroon wrote: On 11/01/12 22:37, Luisa Ester Navarro wrote: J. Thanks Jeron: any idea how to start researching which is the leaky scr

Re: [users@httpd] attack on apache

2012-01-11 Thread Jeroen Geilman
On 01/11/2012 10:10 PM, Jaco Kroon wrote: On 11/01/12 22:37, Luisa Ester Navarro wrote: J. Thanks Jeron: any idea how to start researching which is the leaky script Cheers Luisa Hehe, this is where they say,

Re: [users@httpd] attack on apache

2012-01-11 Thread Jaco Kroon
On 11/01/12 22:37, Luisa Ester Navarro wrote: J. Thanks Jeron: any idea how to start researching which is the leaky script Cheers Luisa Hehe, this is where they say, RTFS, or as Jeron suggested, see if you ca

Re: [users@httpd] attack on apache

2012-01-11 Thread Kevin A. McGrail
any idea how to start researching which is the leaky script Checking the access log for the same ip that was getting the errors you found in the error_log is a good start. - The official User-To-User support foru

RE: [users@httpd] attack on apache

2012-01-11 Thread Luisa Ester Navarro
Date: Wed, 11 Jan 2012 21:13:53 +0100 From: jer...@adaptr.nl To: users@httpd.apache.org Subject: Re: [users@httpd] attack on apache On 01/11/2012 09:10 PM, Jaco Kroon wrote: On 11/01/12 21:35, Jeroen Geilman wrote:

Re: [users@httpd] attack on apache

2012-01-11 Thread Jeroen Geilman
On 01/11/2012 09:10 PM, Jaco Kroon wrote: On 11/01/12 21:35, Jeroen Geilman wrote: In /var/log/httpd/error_log I see hink like this sh: del comand no found sh: xx Permission denied I need help ! 1. Stop apache. 2. investigate which leaky, creaky or lousy PHP script allowed this exploit.

Re: [users@httpd] attack on apache

2012-01-11 Thread Jaco Kroon
On 11/01/12 21:35, Jeroen Geilman wrote: In /var/log/httpd/error_log I see hink like this sh: del comand no found sh: xx Permission denied I need help ! 1. Stop apache. 2. investigate which leaky, creaky or lousy PHP script allowed this exploit. 3. remove the bad script. 4. Remount /tmp

Re: [users@httpd] attack on apache

2012-01-11 Thread Jeroen Geilman
On 01/11/2012 08:24 PM, Luisa Ester Navarro wrote: From: luisa2...@hotmail.com To: users@httpd.apache.org Subject: RE: [users@httpd] attack on apache Date: Wed, 11 Jan 2012 16:15:14 -0300 > Date: Mon, 9 Jan 2012 17:30:2

RE: [users@httpd] attack on apache

2012-01-11 Thread Luisa Ester Navarro
From: luisa2...@hotmail.com To: users@httpd.apache.org Subject: RE: [users@httpd] attack on apache Date: Wed, 11 Jan 2012 16:15:14 -0300 > Date: Mon, 9 Jan 2012 17:30:21 + > From: tevans...@googlemail.com > To: users@httpd.apache.org > Subject: Re: FW: [users@httpd] attack on apache

Re: [users@httpd] Is it possible to redirect user to "market://..." URI?

2012-01-11 Thread linux.il
On Wed, Jan 11, 2012 at 2:01 AM, Jeroen Geilman wrote: > On 01/10/2012 09:17 AM, linux.il wrote: >>> >>> On Mon, Jan 9, 2012 at 9:31 PM, Jeroen Geilman  wrote: >>> On 2012-01-09 14:08, linux.il wrote: On my website I should redirect Android users to my application on Android Ma