[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/bbcode.php on line 483: preg_replace(): The /e modifier is no longer supported, use preg_replace_callback instead
[phpBB Debug] PHP Warning: in file [ROOT]/includes/functions.php on line 4752: Cannot modify header information - headers already sent by (output started at [ROOT]/includes/functions.php:3887)
[phpBB Debug] PHP Warning: in file [ROOT]/includes/functions.php on line 4754: Cannot modify header information - headers already sent by (output started at [ROOT]/includes/functions.php:3887)
[phpBB Debug] PHP Warning: in file [ROOT]/includes/functions.php on line 4755: Cannot modify header information - headers already sent by (output started at [ROOT]/includes/functions.php:3887)
[phpBB Debug] PHP Warning: in file [ROOT]/includes/functions.php on line 4756: Cannot modify header information - headers already sent by (output started at [ROOT]/includes/functions.php:3887)
Netopsiyon Online - Başlığı görüntüle - dosya yüklemeyi yasaklama

dosya yüklemeyi yasaklama

Mesaj: 1+
Kullanıcı avatarı
Mesajlar: 4
Kayıt: 15 Ara 2004, 01:00
Konum: Berlin

dosya yüklemeyi yasaklama

Mesajgönderen MIDNIGHT » 07 May 2012, 22:18

Merhaba arkdaslar.
gecenlerde hacklendim.
shell sokmuslar ftpye
---
düsündümde php.ini dosyasi hazirlasam site üzerinden ftpye dosya yükleme yasaklama sansim varmi. mesela upload_max_filesize = 0 yapsam
sunucuda var ama sadece ftp de varmi acaba böyle bsiey yapabilirmiyim acaba calisirimi..
Öyle Bir Çağda Yaşıyoruzki Bir ö–n Yargıyı Yok Etmek Atomu Parçalamaktan Daha Zor...

Netopsiyon Siteleri Yöneticisi
Kullanıcı avatarı
Mesajlar: 42
Kayıt: 20 Tem 2002, 00:00
Konum: Balıkesir

Re: dosya yüklemeyi yasaklama

Mesajgönderen Aliosman » 09 May 2012, 10:59

Maalesef böyle birşey olmaz. mod_security kurarak engelleme yapmayı deneyin.

Bir de güvenlik için ln komutunu sadece root çalışır hale getirin.

# chmod 0700 /bin/ln
===========================
http://www.netopsiyon.com.tr
===========================

Mesaj: 1+
Kullanıcı avatarı
Mesajlar: 4
Kayıt: 15 Ara 2004, 01:00
Konum: Berlin

Re: dosya yüklemeyi yasaklama

Mesajgönderen MIDNIGHT » 03 Tem 2012, 13:33

mod_security kural zinciri sorunsuz.. ama yinede calisiyor shell
adamlar shell kodlarini zend ile sifreliyor virüs programlarida görmüyor.. :)

vaktim oldugu zaman ( en kisa zamanda ) daha detayli bir arastirma ve bazi deneme yanilma yaparak bi caharesine bakicam.
gelismeleri burda paylasmaya calisacagim
iyi calismlar...
Öyle Bir Çağda Yaşıyoruzki Bir ö–n Yargıyı Yok Etmek Atomu Parçalamaktan Daha Zor...

Netopsiyon Siteleri Yöneticisi
Kullanıcı avatarı
Mesajlar: 42
Kayıt: 20 Tem 2002, 00:00
Konum: Balıkesir

Re: dosya yüklemeyi yasaklama

Mesajgönderen Aliosman » 04 Tem 2012, 09:22

Safe mod değerini On yaparsan shell hiçbir işe yaramaz :)) yada cxs kurabilirsin o da işe yarıyor. php.ini kullanımını engelle.
===========================
http://www.netopsiyon.com.tr
===========================

Dön Linux Yönetimi

Kimler çevrimiçi

Bu forumu gezen kullanıcılar: Hiç bir kayıtlı kullanıcı yok ve 1 misafir