Results 1 to 3 of 3
  1. #1
    Join Date
    Aug 2001
    Posts
    4,028

    Which software do you NOT support?

    Hello,

    Our company is considering entering the hosting market again but one thing I really used to hate was dealing with outdated/insecure phpnuke websites for customers that had no idea about security.

    Is there a general "list" of applications that are known to be insecure and you will just not allow?

    Thank you.

  2. #2
    Join Date
    Feb 2004
    Location
    New Zealand
    Posts
    1,202
    Modern Hosting World ::

    " Webhosts should be able to host any PHP script "


    If your server is correctly setup in the security realm, You should be able to upload some PHP shell yourself and try to run it... if it works, well your insecure...

    Its the same with vulnerable CMS's, if you can install a common CMS, then google for a exploit for it and the exploit works.. Your server is insecure.

    Conclusion ::

    Even if you have vulnerable/insecure PHP scripts, you should still be able to run them partially on your linux server without being exploited...

    In some cases, its not about completely stopping an attack but letting it happen to a certain extent to learn from it, then block the attack with crafted security rules.

    mod_security is one of the best things ever coded for apache servers, with my custom rules i can block some of the latest even unheard of attacks Thats why its good to be a " grey hat " security enthusiast, as you get the pros of both sides

    I hope this helps.

    Best Regards,
    Logan
    DigitalGoods.info
    FREE Shared, Mega Resellers + Dedicated Servers

  3. #3
    Join Date
    Aug 2001
    Posts
    4,028
    Thanks for the reply Logan.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •