Results 1 to 16 of 16

Thread: Shell Access

  1. #1

    Shell Access

    Hello

    i have a dedicated server
    i get server for study unix manage

    i have a problem by SHELL FILES ( hacker shell file )
    other Site can Upload Shell file and get Access for edit other Site in server

    i set tweak scurity in CPANEL and Disable Function
    and i give not Shell access to all site
    but hacker can hack me by Shell access
    Hacker can not hack me by c99 Shell but can hack by New shell

    i upload this shell in my server Link : [url removed]
    please visit it and help me For Close it !!!

    please Do not hack me by Shell Please HELP ME
    Last edited by bear; 01-22-2007 at 06:18 PM.

  2. #2
    Join Date
    May 2006
    Posts
    556
    Wait... You uploaded that? The entire public can see that script, access it, and can execute bash commands by that prompt at the bottom?

  3. #3
    Join Date
    Oct 2002
    Location
    State of Disbelief
    Posts
    22,948
    I removed the link. If that's your site, that wasn't too good of an idea. I suggest removing it right away....

  4. #4
    Hello

    please say me
    how i can confirm it ?
    i have another dedicated server , please say me for confirm another server
    thanks

  5. #5
    Join Date
    Oct 2004
    Location
    Złocieniec, Poland
    Posts
    190
    LOL
    man remove this file from ur server immediatelly
    disabling exec() function is not enough to prevent ur server from hacking
    there are still many ways to hack it using this file

    btw connections from 83.21.150.* are mine
    www.goscinnawies.pl - family business, small travel agency in Poland

  6. #6
    Join Date
    May 2006
    Posts
    556
    Quote Originally Posted by webhostinginfo
    Hello

    please say me
    how i can confirm it ?
    i have another dedicated server , please say me for confirm another server
    thanks
    I'm trying to help, but I'm having a hard time understanding you. Please say me? What do you mean? How can you confirm what?

  7. #7
    Hello

    please say me
    how i can confirm it ?
    i have another dedicated server , please say me for confirm another server
    thanks

  8. #8
    Quote Originally Posted by IceCreamMan
    I'm trying to help, but I'm having a hard time understanding you. Please say me? What do you mean? How can you confirm what?
    Hello

    i have a problem by hacker
    hacker upload Shell access .php file in host and attack to another site on ther server , i disable function but hacker can attack again !!
    please help me !!

  9. #9
    Join Date
    May 2006
    Posts
    556
    Oh... I see... Hire someone to find out who uploaded this script, disable it, and prevent it from happening again... I can't really explain step by step how to fix your server completely. Do delete that file though!

  10. #10
    Quote Originally Posted by IceCreamMan
    Oh... I see... Hire someone to find out who uploaded this script, disable it, and prevent it from happening again... I can't really explain step by step how to fix your server completely. Do delete that file though!
    hellp ICECreamman
    please help me about this problem
    you can delete it !!! but other user can upload again on other site
    please give me Link for confirm it !!
    thanks !

  11. #11
    Join Date
    May 2006
    Posts
    556
    Alright... Find out WHO is uploading this file... Look in your FTP logs, granted that's how they are uploading it. Ban that user from all of your servers. Ban that file from being uploaded. This is all I can help you over the forums... You might be at risk of having to restore your OS and then hiring someone to secure it properly. There's no telling what they did with that script.

  12. #12
    Quote Originally Posted by IceCreamMan
    Oh... I see... Hire someone to find out who uploaded this script, disable it, and prevent it from happening again... I can't really explain step by step how to fix your server completely. Do delete that file though!
    Dear
    i can delete it
    but other site can upload again and hack server !
    please help me for disabled it
    or give me LINK for disable it ...

  13. #13
    Join Date
    May 2006
    Posts
    556
    Check your PM box wehostinginfo.

  14. #14
    Join Date
    Mar 2006
    Location
    tikkabilla
    Posts
    49
    you gotta check your file permisions.

    set /tmp non exec.. 1st thing to try!
    http://parked.net -100% Google Adsense Revenue | http://viphotels.co.uk - Worldwide VIP Hotels

  15. #15
    Quote Originally Posted by ruptbot
    you gotta check your file permisions.

    set /tmp non exec.. 1st thing to try!
    ok
    thanks
    but i can not confirm it
    if you have a yahoo - msn - skype user please help me
    Last edited by webhostinginfo; 01-23-2007 at 07:22 AM.

  16. #16
    Join Date
    Oct 2002
    Location
    State of Disbelief
    Posts
    22,948
    webhostinginfo, it seems pretty clear that you need someone to help run your server. Asking for this sort of help of this magnitude from total strangers on a forum you just joined is not the wisest choice. Since you also publicly posted something you yourself uploaded that could have wiped or at least rooted your server, it's clear you need to hire someone before something major fails.
    May I suggest you contact any of the server management companies that frequent this forum by searching in the ads forum? (look in the ads section here)

    One I've used is Platinum Sever Management, and they are quite good. For a one time fix, I've used Steve at Rack911, and he also did a good job, though he was a one time cost of about $25, where PSM you can hire for a whole month for something like $29. Steve was worth it for what I needed, however.

    Trust me, it's a better solution than asking random stangers "not to hack you".
    Good luck.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •