hosted by liquidweb


Go Back   Web Hosting Talk : Web Hosting Main Forums : Hosting Software and Control Panels : PHP and Control Panels
Reply

Forum Jump

PHP and Control Panels

Reply Post New Thread In Hosting Software and Control Panels Subscription
 
Send news tip View All Posts Thread Tools Search this Thread Display Modes
  #1  
Old 09-27-2000, 06:57 AM
stratius-webmaster stratius-webmaster is offline
Newbie
 
Join Date: Sep 2000
Posts: 8
Lightbulb

Recently ive seen alot of companys using a php solution for control panels, and I have toy'd with the idea for about 6 months now. Every way I have tried to make changes that are needed for a control panel it seems absolutly insecure to me. Is there somthing im missing, or is it that all these companys are using realy insecure php scripts just because it makes the customers life easier. If it truely is secure I would love to see some code snipits just so i can ease my curious mind. I know people are realy protective of their code expecialy if it is somthing as usefull as this, but its not like im asking for the whole script or anything I am just wondering how changes like this are made without putting the server security at risk.



Sponsored Links
  #2  
Old 09-27-2000, 11:59 AM
JTY JTY is offline
Community Guide
 
Join Date: Jun 2000
Location: Washington, USA
Posts: 5,991
I imagine some are doing it through cron jobs.

  #3  
Old 09-27-2000, 03:12 PM
Félix C.Courtemanche Félix C.Courtemanche is offline
Web Hosting Master
 
Join Date: May 2000
Posts: 587
Do it safely, always.
its not hard...

use:
ereg() and verify EVERY input from your users make sure EVERYTHING is compatible and work, can'T bug down the server

use encryption and a database backend...

update your system with the latest changes every minutes or so from cron, running the php script that update as root.

That way no need to have apache running as root (wich isnt a good idea)

Verify your customer's identity ALL the time, beffore ANY modification. Verify any input data, etc.

Tell me... how will someone go around that?

__________________
Félix C.Courtemanche · webmaster@can-host.com
Can-Host Networks · http://www.can-host.com
web«cp Control Panel · http://webcp.can-host.com

Sponsored Links
  #4  
Old 05-27-2003, 07:25 AM
platformis platformis is offline
New Member
 
Join Date: May 2003
Posts: 3
Re: insecure php scripts

I have no idea how others are doing this,
but i can tell you how we do it )

GUI (PHP scripts) -> System Service (C Daemon) listening on specific port -> System Tools (perl/C/Bash/Awk scripts)

On this base everything is executed in
'Real Time'

I hope this will help you.

  #5  
Old 05-27-2003, 06:28 PM
heyzuess heyzuess is offline
WHT Addict
 
Join Date: Nov 2002
Posts: 151
Re: Re: insecure php scripts

Quote:
Originally posted by platformis
I have no idea how others are doing this,
but i can tell you how we do it )

GUI (PHP scripts) -> System Service (C Daemon) listening on specific port -> System Tools (perl/C/Bash/Awk scripts)

On this base everything is executed in
'Real Time'

I hope this will help you.

I started working on a game server control panel and used the same type of setup, except using perl for the daemon, as I don't know C.


Reply

Related posts from TheWhir.com
Title Type Date Posted
IT Monitoring Solution Anturis Adds Parallels Plesk Integration Web Hosting News 2014-02-26 09:58:52
Quality Technology Services Offers Free Installation of Data Center Panels Web Hosting News 2013-01-30 14:47:05
Free Open Source Hosting Control Panel Neon Seeking Funding Via Kickstarter Web Hosting News 2012-12-31 13:38:04
Video: Hosting Control Panel cPanel, and Billing Software WHMCS Discuss Investment, Partnership, Integration Whir Tv 2013-10-05 05:57:43
GlobalSign OneClickSSL Plug-in Available with DirectAdmin Web Hosting Control Panel Web Hosting News 2012-08-02 14:21:17


Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes
Postbit Selector

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Forum Jump
Login:
Log in with your username and password
Username:
Password:



Forgot Password?
Advertisement:
Web Hosting News:



 

X

Welcome to WebHostingTalk.com

Create your username to jump into the discussion!

WebHostingTalk.com is the largest, most influentual web hosting community on the Internet. Join us by filling in the form below.


(4 digit year)

Already a member?