Results 1 to 9 of 9

Thread: Functions Shell

  1. #1
    Join Date
    Sep 2013
    Posts
    48

    Functions Shell

    hello
    I need that the function of r57 and c99 and webroot Shell and ... Be used.
    Function close to php.ini in php and not running loose.
    Is there a way to access host other than the symlink there?

    thanks

  2. #2
    Join Date
    Oct 2002
    Location
    State of Disbelief
    Posts
    22,948
    Are you asking for help in hacking here?
    Having problems, or maybe questions about WHT? Head over to the help desk!

  3. #3
    Join Date
    Sep 2013
    Posts
    48
    Do you think so?
    No. I am a server administrator and I want to upgrade my server security.
    If you think I'm a hacker anymore, please do not respond.

  4. #4
    Join Date
    Dec 2010
    Location
    127.0.0.1
    Posts
    5,387
    If your a server administrator you should know what to disable on the servers.
    Licensecart - We only sell High Quality licenses
    Visit us @ Licensecart.com ~ sales(➾)licensecart.com ~ webhostbundle.com
    WHT isn't what it used to be… power changes people :]

  5. #5
    Join Date
    Sep 2013
    Posts
    48
    My dear friend, I know how to disable the php server.
    I'm not a hacker, just want to know how loose the function that is used in Shell to close them in php.ini.

    If I was a hacker that you did not question the function hall.
    Please make yourself mentality.
    Thanks

  6. #6
    Join Date
    Feb 2011
    Posts
    129
    Quote Originally Posted by YasIT View Post
    My dear friend, I know how to disable the php server.
    I'm not a hacker, just want to know how loose the function that is used in Shell to close them in php.ini.

    If I was a hacker that you did not question the function hall.
    Please make yourself mentality.
    Thanks
    Search Google for those scripts.
    Find the source code and see the functions that are used and you can disable them

  7. #7
    Join Date
    Sep 2013
    Posts
    48
    True, Dear Friend,
    but files is encoded..!

    Thanks

  8. #8
    Join Date
    Feb 2006
    Location
    Greece
    Posts
    194
    They usually create a function like run() or something and they invoke multiple IFs for
    exec, system, passthrough and shell_exec.

    Even if you disable them, they can re-enable them with ini_set.

    So you need something like:

    Code:
    disable_functions=eval,exec,passthru,shell_exec,system,proc_open,popen,curl_exec,curl_multi_exec,parse_ini_file,show_source, ini_set
    But you gonna break a lot of other stuff too.
    Especially with ini_set.

    That's not the "proper" way to do it though.. You should try to filter them with mod_security or having cloudlinux with cagefs enabled to moderate the attack and minimize it.

  9. #9
    It is good to disable dangerous php functions in php.ini and cagefs with Cloudlinux provides good security to shared hosting environment.

Similar Threads

  1. Replies: 0
    Last Post: 08-15-2012, 05:29 PM
  2. How do you stop most PHP Shell functions?
    By nessic in forum Hosting Security and Technology
    Replies: 9
    Last Post: 08-13-2009, 11:05 AM
  3. Easy Functions [Functions Tool Kit] PHP Coders Needed!
    By DiverseFlow in forum Other Offers & Requests
    Replies: 0
    Last Post: 03-14-2005, 12:40 AM
  4. PHP/Mysql: Functions inside Functions involving Queries
    By Helios in forum Programming Discussion
    Replies: 1
    Last Post: 10-24-2002, 08:24 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •