LinkBack URL
About LinkBacksfunny how wormfix.pl its a sh script
funny how wormfix.pl its a sh script
premsai,Originally Posted by premsai
since Fantastico De Luxe 2.8.2 r7, you can use a renamed version of wget for Fantastico. If you have an older version: chmod "wget" back to 755 and update Fantastico. Then:
whereis wget
## (usually /usr/bin/wget)
cp /usr/bin/wget /usr/bin/something_long_and_strange_enough_here
chmod 700 /usr/bin/wget
chmod 755 /usr/bin/something_long_and_strange_enough_here
Now go to Fantastico admin -> Settings and enter the full path to the renamed wget, i.e.: /usr/bin/something_long_and_strange_enough_here
use something like "o41jprw86gq00cm1" for "something_long_and_strange_enough_here" (and DON'T USE THE EXAMPLES!!!)
We have seen an increase of attacks of every possible form using "wget", the above is highly recommended in order to make your server more secure.
kosmo
http://netenberg.com/
AccountLab Plus Affordable professional webhosting billing
Click Be! Building websites as easy as it click be
Fantastico De Luxe - Install your favourite scripts at a mouse click
Universina - The CPanel skin with Heart and Soul
thx premsai for the script - woked like a charm
i had 2 server compromised :-(((
now everything is back to naormal
greetz
zye
I highly suggest blocking outgoing IRC connections. You can add it to an iptables firewall with this command:
iptables -A OUTPUT -p TCP -s 0/0 --destination-port 6667 -j REJECT
Port 6665 is also popular, so I would add an additional rule for that, as well.
Reply With Quote