In my previous post I was telling about checking for programs using network on Linux using lsof tool.
Here I have “live” example of such backdoor found on one of our servers.
Read more »
Category Archives: Security - Page 3
Using lsof to find trojan processes on Linux.
Posted by al3x
on 11/06/2010
4 comments
Looking for the backdoors or performance bottlenecks with lsof
Posted by al3x
on 10/19/2010
No comments
When server is compromised via some PHP script security hole intruders are getting relatively low level of access to the server. Although its enough to install PHP shell script or start some backdoor network daemon or proxy server or network scanner.
Lets see if we can find them
Read more »
.htaccess anti-RFI mod_rewrite rules
Posted by al3x
on 10/15/2010
No comments
RFI – Remote File Inclusion (or “nesting” – though last term is not so widely used, and it’s not the same as XSS I beleive) is very serious security threat – especially in webhosting environment where there is no time and manpower available to audit and vet all customers PHP scripts. Let’s see if there are other ways to reduce the threat