Protection against Shell Scripts

bin_asc

Well-Known Member
Jul 18, 2005
280
0
166
What methods do you use to get protected ? What modules do you using Apache and php to get protected ?
I`m interested because I tried suphp, disable_functions and suexec, nothing works. I can still read for example : /etc/passwd.
Need your suggestions.
 

bin_asc

Well-Known Member
Jul 18, 2005
280
0
166
You can forget about that, with a normal shell script, that`s very easy to bypass.
 

bin_asc

Well-Known Member
Jul 18, 2005
280
0
166
exec, system, popen, passthru, shell_exec, proc_open, proc_close, proc_nice, proc_terminate, pclose
 

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,607
79
458
cPanel Access Level
Root Administrator
exec, system, popen, passthru, shell_exec, proc_open, proc_close, proc_nice, proc_terminate, pclose
You may wan to add dl. Also check out more of the File System functions. Also, open_basedir can at least be used to lock the PHP functions to a specific directory.
 

bin_asc

Well-Known Member
Jul 18, 2005
280
0
166
Well, I did do something, now I can`t browse /home/, but thing is, I can still list /etc/passwd, and I think the only way to stop that is to stop the fopen function which is pretty much out of discussion.

PS. I can list / too.