1.com/file.php, 2.com/file.php Where File.php Is Hosted On Main.com/file.php
Say I have 2 websites and they all use file.php which is located on mainserver.com/file.php.
I want to use the file like this:
website1.com/file.php
website2.com/file.php
View Complete Thread with Replies
Sponsored Links:
Related Forum Messages:
Links Files In Linux (file.txt For File.php)
Today I found some cstomer on the servers make a link for named it file.txt and link it to other customer php file. so that customer have the ability to show the other custoer file content when visiting the url because it is a text wile originally it is a php file. the php file was a config file, so now he know the database password , and because he is in the same server he can use that databse. the question , how to avoide this prolem in the future? notes , the SuExec is rnning and the open_basedir protection is enabled, but the problem still exists.
View Replies!
View Related
Strange PHP File On My VPS. (oxb.php)
I found a strange PHP file in a strange folder on a VPS I am using to host a few sites. I've looked through the logs but can't figure out how it got there and I've look at the code and can't make any sense of it. Can somebody take a look at the code and tell me what they think of it: .....
View Replies!
View Related
PHP File Upload
I think I messed php config and I can't upload anything with php now Dir is chmoded on 777 and File_Uploads = On in php.ini I'm running lsphp5 with suhosin, when I try to import db via phpmyadmin I get error: Uploading is not allowed and when I try to upload some file via php script I can't
View Replies!
View Related
Php File Corruption
I have a Linux VPS with Liquidweb which is working fine except for one problem: On one domain I have a shopping cart (a highly modded CubeCart). A number of the files are encrypted php files (part of the extensive mods). For several weeks all will work fine, then out of the blue, the cart will stop working because a number of the encrypted files have become corrupt. The result is either a totally blank page or a 'checksum error'. Uploading the files from a local backup fixes things for another few days or weeks. I have no idea why this is happening, or what triggers it, so if anyone can point me in the right direction to find out what is behind the problem, I would greatly appreciate it. The server uses PHP 5.2.x
View Replies!
View Related
Cron: How To Run Php File
My server with cPanel, I'd like run file http://domain.com/file.php at 0h00 everyday, I have set the Cron Job in cPanel : Code: 0 0 * * * /usr/bin/ehpwget http://domain.com/file.php but The cron is not working well Code: /bin/sh: /usr/bin/ehpwget: No such file or directory Can any one please let me know how to run a php file with cron. (as user or root)
View Replies!
View Related
[php] <defunct> - What File Generating That ?
On my server, i have one user ho create load on my server. user 29508 22.0 0.0 0 0 ? Z 15:18 0:00 [php] <defunct> That user has more site added with addons from cpanel. How can I found witch site is generating that high load ? Also some time, I have php index.php ( and that don't help me very much ) The server run php as cgi module.
View Replies!
View Related
PHP Permissions (file Owner)
I have setup an ftp user which can upload files to /home/ftp/upload and obviously it assigns the ftp user as the owner when it uploads. Now, I want PHP to be able to rename those files, but getting a permission denied, presumably because apache aint the owner or doesnt have permission to do that, so how do I grant it the right permission(s)?
View Replies!
View Related
PHP File Change String
I currently have this code in my Image Upload script which changes the file name into sets of numbers and letters Quote: $new_file_name = "uploads/" . md5($_FILES['selector']['name'] . time()) . "." . $extension; How can i make it so its smaller than an md5, about 6 or 7 numbers and letters.
View Replies!
View Related
Mod_rewrite - Changing Paths In The Php File?
I am using mod_rewrite to create "pretty" urls but some of my files contain paths such as this: <img src="images/blah.jpg"> Meaning if the user visits a page where the file does not physically exist then it won't work. I want to know if it is possible to pick this up and rewrite the path. I.e.: change: <img src="images/blah.jpg"> to: <img src="../images/blah.jpg"> or <img src="../../images/blah.jpg"> As I don't want to create physical files with relative urls for every trunk of my url. For example: www.mydomain.com/directory/directory/directory/ Would need 3 different files in three different directories to display properly.
View Replies!
View Related
Prevent PHP Files Used For File Uploading
It appears that some people like to take advantage of those files for online web applications such as Wordpress which have php files with permissions set to 777. They use those as a means of creating an upload file. The upload files that they create then have access to the whole server somehow... Is there anyway of preventing this from happening?
View Replies!
View Related
Chmod Choices With Php Writing To A File
My account has been hacked with every index.php page defaced. I've cleaned up and my shared wehost is pointing at me saying there shouldn't be any 777 permissions for any files in there. I used 777 to allow php to add records in a txt file and in an xml file. Is there a better / more secure chmod code I can use? Those are the only two instances where I need php to write to a file and those files shouldn't be served to anyone, I do not want anyone to be able to access them. How can I secure them while letting php write in them?
View Replies!
View Related
Php.ini And .htaccess File Permissions
I'm on a shared FreeBSD server, running Apache with Drupal, and vBulletin. I had to create a local php.ini file in my public_html folder for Drupal, and another in my forum folder for vBulletin. Now my question is, what should I set the permissions of these files to? Also, what should I set .htaccess permissions to as well? I'd like to keep them invisible to the public. But, I don't want any problems with Drupal, or vBulletin ether. I'm used to using Linux and I know how permissions work on a desktop. I just don't know what they do when used on a server. I'm guessing 640, but I'd like to make sure before I change anything.
View Replies!
View Related
Strip Whitespace From Each Line Of PHP File
I have a load of PHP files that need trimming down, so for example Code: <html> <?php $loads_of_stuff = 1231231; ?> </html> change to Code: <html> <?php $loads_of_stuff = 1231231; ?> </html> There are 000's of lines, so some awk command or something similiar would be great to execute on each file.
View Replies!
View Related
How To Prevent People Upload Unwanted .php File
I have a 777 cmod folder open. It needed to be writable so that legitimate users can upload their picture. However, i do not want people to upload .php or .php.pjepg etc to the server. There are times that they do not use the form in my site to upload the php file. How can they do that? via perl command? And how to prevent such thing from happending?
View Replies!
View Related
How To Secure Your Php.ini File Safe Mode ; Disable_functions ; Etc
what are the most important issues for secure php.ini file like when you turn your SAFE_MODE ON or OFF? or please who every read this topic to post his important disable_functions in php.ini ... and if some functions disable to post it ... let's make this subject for the most important issues for secure your php.ini from script-kids as we can ... here i have some important question's for anyone has or controlling a server ; vps .... #0x01 ; what the most important disable_functions for the php.ini? #0x02 ; is the safe_mode should be enabled? or disable? and this depend on what exacly? #0x03 ; what the functions or any trick to control the nobody ( attacker on the server or shell ) FROOZ .... didn't move ? or make any command in the server ... #0x04 ; i saw in some secure server ( as they say ) they changed the Server : discribe to them name[s] like Server : SECURE BY US .COM OR SECURE SERVER .. uname -a : Linux secure.secure.com 2.6.9-023stab040.1 #1 Mon Jan 15 23:24:32 MSK 2007 i686 athlon i386 GNU/Linux sysctl : linux 2.6.9-023stab040.1 Server : SECURE BY US ! < [THIS WHAT I MEAN HOW COULD WE CHANGE IT IN PHP.ini ?] id : uid=99(nobody) gid=99(nobody) groups=99(nobody) <[how can we cannot make this nobody to have the host id ! everyhost in the server should have his own name and php.ini ?] pwd : /home/host/public_html/ #0x05 ; how can we hide the uname -a on the shell [ the attacker upload it to our customer site !] #0x06 ; how can we hide the sysctl to view to anyone like [ attacker ] ... #0x07 ; how can we rewrite on he Server Type the display for our secure message?Server : SECURE BY US ! #0x08 ; how can we give evey site and customer his php.ini file in his public_html? and how can we give him [ JUST HIS PERMISSION TO HIS SITES FOLDER AND NOT OTHER PATHS AND PERMISSION!] these question every one had a server ; vps , need to know and secure his box from other ... and anyone would like to publish any new [secure or not] idea please let us know what you would like to say ....
View Replies!
View Related
Simpleish PHP/flat Files - Create File, Edit, Save
Display some text in a web browser from a file called text.txt text.txt will have many lines and some of them I do not want users to be able to modify and overwrite. config_item_1=user can edit config_item_2=user should see but not edit (could be on any line) config_item_3=user can edit config_item_4=user can edit The user has made their changes in the web browser and clicks submit. I then need this info to be saved as the text.txt file however some checking needs to be done first. Anything matching config_item_2 should be removed. This could be on any line. Anything not matching should be permitted and added.
View Replies!
View Related
Proc List Only Shows "/usr/bin/php" - No More File Names
We use cpanel on our centos servers and we've updated our servers recently using easyapache to the latest php4 and mod_suphp and I've noticed that in top (running "top c" in shell) all php processes by any user are simply displayed as "/usr/bin/php" Before this update the processes also showed the file name eg. "/usr/bin/php lamescript.php" which allowed to easily find troublesome scripts ... but now there's no way of knowing what the script in question is that's eating up 100% of the cpu .. or is there?
View Replies!
View Related
Ffmpeg :: Cannot Open Shared Object File: No Such File Or Directory In Unknown On Line 0
Rapidly growing error logs showing the same message $ug-non-zts-20020429/ffmpeg.so' - /usr/local/lib/php/extensions/no-debug-non-zts-20020429//usr/local/lib/php/extensions/no-debug-non-zts-20020429/ffmpeg.so: cannot open shared object file: No such file or directory in Unknown on line 0 root@server [~]# ls /usr/local/lib/php/extensions/no-debug-non-zts-20020429 ./ ../ eaccelerator.so* root@server [~]# ls /usr/local/lib/php/extensions/no-debug-non-zts-20020429 ./ ../ eaccelerator.so* Using cpanel 11 / centos 4
View Replies!
View Related
Windows- PHP Exploit Being Used To Render All PHP Sites Useless
This has been happening for about 6 months, someone has been exploiting my windows server and causing 300 php.exe processes to run, therefore making the CPU usage go to 100% and cause all php sites to not function. It is a perl script, and I had gotten ahold of the explot, but am unsure how to block it, what the following is doing, and how to block it.. once I find the script again I will add it to the post.. I am using Plesk on my box.
View Replies!
View Related
Php Includes Issue On Linux Server With Apache 2.0.63 / Php 5.2.6
I am having some trouble with getting 'include' working. I have a new dedicated server running Apache 2.0.63 and PHP 5.2.6. Local includes on the same domain are running ok, but remote includes are throwing a problem. On the many sites we plan to host on this servber we use a central 'webmaster' page called as an include from a specific site (also on the same server). I need to edit the PHP.ini and /or recompile the PHP with the appropriate modules to do one of the following... 1 (ideally) - allow includes from any site that is held on this dedicated server 2. allow includes from specified websites 3. simply allow remote includes right settings to get one of these options running and solve my problem?
View Replies!
View Related
Update Php And Website Showing Php Code
I have update php successfully 5.2.6 to 5.2.9. -bash-3.2# php -v PHP 5.2.9 (cli) (built: Apr 10 2009 00:53:01) Copyright (c) 1997-2009 The PHP Group Zend Engine v2.2.0, Copyright (c) 1998-2009 Zend Technologies i already restart the httpd but everytime I go to my website, php page is now showing my php page as php code. :/
View Replies!
View Related
Php Passthru() Works From PHP CLI But Not Web
php passthru() works from PHP CLI but not web I have a script which I use to restart processes and I am trying to make it work by clicking a button on the word. It works from running it from php command line but I can never seem to get it to work through the click of a button. Does anyone know what may be the cause of this? here is some other observations: old php version 4 seems to work fine, but ever since around 4.3+ it just won't work from the web.
View Replies!
View Related
Apache/MySQL/PHP Issue - PHP Not Loading
I've got a server that was running Apache 2.0/PHP 5.2.5 & MysQL 5.0 just fine, however I needed to upgrade to a newer version of MySQL. So I uninstalled MySQL 5.0 and installed MySQL 5.1, copied the MySQLlibs over, and recompiled Apache/PHP with easyupdate. Apache & MysQL both start/run fine without errors, however PHP files don't load. Just get black pages (HTML works fine obviously). I went ahead and updated to Apache 2.2 & PHP 5.2.6 while I was at it, but that doesn't change things. I'm not sure why uninstalling MysQL & reinstalling would break any dependencies, but looks like thats the case. Perhaps I need to reinstall some libraries? Or would it be easier just to reinstall Apache/PHP entirely? I have no data.
View Replies!
View Related
PHP Bug- PHP Can't Resolve Domains, Server Can
My VPS was a clean build 2 weeks ago and so far i have installed cpanel and configured everything and added accounts. I began that one of my scripts that uses gethostbyaddr($ip) was failing to resolve any of the ip's it received. I made another PHP file to test this, with this code: PHP Code: <?phpecho file_get_contents[url];?> Resulting in: Warning: file_get_contents() [function.file-get-contents]: php_network_getaddresses: getaddrinfo failed: Name or service not known The thing is, the VPS is resolving domains just fine I can ping, send emails, even dig: Code: [root@server etc]# dig google.com ; <<>> DiG 9.2.4 <<>> google.com ;; global options: printcmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34548 ;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 4, ADDITIONAL: 4 ;; QUESTION SECTION: ;google.com. IN A ;; ANSWER SECTION: google.com. 300 IN A 64.233.167.99 google.com. 300 IN A 64.233.187.99 google.com. 300 IN A 72.14.207.99 ;; AUTHORITY SECTION: google.com. 343652 IN NS ns2.google.com. google.com. 343652 IN NS ns3.google.com. google.com. 343652 IN NS ns4.google.com. google.com. 343652 IN NS ns1.google.com. ;; ADDITIONAL SECTION: ns1.google.com. 343143 IN A 216.239.32.10 ns2.google.com. 343143 IN A 216.239.34.10 ns3.google.com. 343143 IN A 216.239.36.10 ns4.google.com. 343143 IN A 216.239.38.10 ;; Query time: 62 msec ;; SERVER: 83.149.80.123#53(83.149.80.123) ;; WHEN: Tue Jul 24 04:49:35 2007 ;; MSG SIZE rcvd: 212 I have no clue what's up, and i think there must be a guru here that has an idea of what is going on?
View Replies!
View Related
Alias To A Php Script (php Suexec Installed)
i install roundcube webmail (php) i want to add an alias like /mail for all domain to /usr/src/roundcube i add this command in httpd.conf: Quote: Alias /mail /usr/src/webmail but because suphp installed , apache run it under root user (or user assigned to it) and suphp produce "500 Internal server Error"
View Replies!
View Related
Php Not Updating After Php Update On Centos
im trying to update my php version to 5.2+ so i can run phpmyadmin on my server. Ive tried two different methods both produced same results. First method was to download libxml2-2.7.3 and then do ./configure, make,etc then i download php, ./configure, make install, etc. At first i had to yum install make, then a c complier cause make and ./configure didnt work before that. After everything seemed to work fine until the end when it said you may have found a bug on php would you like to submit it? So obviously the php version didnt update at all. Next i tried adding a repo that already contained php-5.2.5 and then yum install php since centos only seems to support regular yum install up to php version 5.1.6. i did rpm and installed php and thought sweet ive updated php. Ran php -v and i am still running php version 5.1.6.
View Replies!
View Related
Phpinfo.php.gif Executing Php
Having this problem on chroot'ed sites in Ensim. This is what I have in my php.conf: Code: [root@ns1 conf.d]# cat /etc/httpd/conf.d/php.conf # # PHP is an HTML-embedded scripting language which attempts to make it # easy for developers to write dynamically generated webpages. # LoadModule php5_module modules/libphp5.so SetOutputFilter PHP SetInputFilter PHP AddType application/x-httpd-php .php AddType application/x-httpd-php-source .phps This prevents file.php.gif from executing in a non-chrooted site, but in my chrooted sites, file.php.gif will execute as a PHP file. Any idea why? Some other config I have to change?
View Replies!
View Related
Php 4 Automatically Becomes Php 5
we compile a php 4 with all the modules that we require. However, after a day or so, it automatically becomes a fresh compilation of php 5. We then recompile to php 4, but same thing, after a day or so it become php 5 again. We've checked cron, and there's nothing to do with recompiling php.
View Replies!
View Related
Installing Php 5 Together With Php 4
my server running freebsd 6.2 i want to installing PHP 5 so my server can run 2 version of PHP (4 and 5) im following the step here [url] installing was successful [root@s1 /usr/local/apache/logs]# /usr/local/cpanel/cgi-sys/php5 -v PHP 5.2.1 (cgi) (built: Mar 30 2007 17:07:11) Copyright (c) 1997-2007 The PHP Group Zend Engine v2.2.0, Copyright (c) 1998-2007 Zend Technologies but when i try to running phpinfo for it, its show me an error i grep the error from error.log and got this [Fri Mar 30 17:42:47 2007] [error] [client 202.65.236.10] Premature end of script headers: /home/uletbulu/public_html/info.php [Fri Mar 30 17:42:47 2007] [error] [client 202.65.236.10] File does not exist: /home/uletbulu/public_html/500.shtml [Fri Mar 30 17:44:07 2007] [error] [client 202.65.236.10] Premature end of script headers: /usr/local/cpanel/cgi-sys/php5 [Fri Mar 30 17:44:07 2007] [error] [client 202.65.236.10] File does not exist: /home/uletbulu/public_html/500.shtml but for php 4 there is no problem at all or the syntax for php 5 not using phpinfo(); anymore? [url] [url]
View Replies!
View Related
PHP 5.2.2 And PHP 4.4.7 Released
Quote: Security Enhancements and Fixes in PHP 5.2.2 and PHP 4.4.7: * Fixed CVE-2007-1001, GD wbmp used with invalid image size (by Ivan Fratric) * Fixed asciiz byte truncation inside mail() (MOPB-33 by Stefan Esser) * Fixed a bug in mb_parse_str() that can be used to activate register_globals (MOPB-26 by Stefan Esser) * Fixed unallocated memory access/double free in in array_user_key_compare() (MOPB-24 by Stefan Esser) * Fixed a double free inside session_regenerate_id() (MOPB-22 by Stefan Esser) * Added missing open_basedir & safe_mode checks to zip:// and bzip:// wrappers. (MOPB-21 by Stefan Esser). * Limit nesting level of input variables with max_input_nesting_level as fix for (MOPB-03 by Stefan Esser) * Fixed CRLF injection inside ftp_putcmd(). (by loveshell[at]Bug.Center.Team) * Fixed a possible super-global overwrite inside import_request_variables(). (by Stefano Di Paola, Stefan Esser) * Fixed a remotely trigger-able buffer overflow inside bundled libxmlrpc library. (by Stanislav Malyshev) Security Enhancements and Fixes in PHP 5.2.2 only: * Fixed a header injection via Subject and To parameters to the mail() function (MOPB-34 by Stefan Esser) * Fixed wrong length calculation in unserialize S type (MOPB-29 by Stefan Esser) * Fixed substr_compare and substr_count information leak (MOPB-14 by Stefan Esser) (Stas, Ilia) * Fixed a remotely trigger-able buffer overflow inside make_http_soap_request(). (by Ilia Alshanetsky) * Fixed a buffer overflow inside user_filter_factory_create(). (by Ilia Alshanetsky) Security Enhancements and Fixes in PHP 4.4.7 only: * XSS in phpinfo() (MOPB-8 by Stefan Esser) As always get the source code from php.net and compile away.Or wait for your distro to put out an updated package.
View Replies!
View Related
Yum Install Php Or Manually Install Php
What difference between yum install php or manually install php from scrach (build, make and install)? I know manually install could configure lots of parameters and paths, like --iconv, --mbsting, etc. I don't know anything behind yum install php. If I want to install php everything in the following: ./configure --prefix=/usr/local/webserver/php --with-config-file-path=/usr/local/webserver/php/etc --with-mysql=/usr/local/webserver/mysql --with-mysqli=/usr/local/webserver/mysql/bin/mysql_config --with-iconv-dir=/usr/local --with-freetype-dir --with-jpeg-dir --with-png-dir --with-zlib --with-libxml-dir=/usr --enable-xml --disable-debug --disable-rpath --enable-discard-path --enable-safe-mode --enable-bcmath --enable-shmop --enable-sysvsem --enable-inline-optimization --with-curl --with-curlwrappers --enable-mbregex --enable-fastcgi --enable-fpm --enable-force-cgi-redirect --enable-mbstring --with-mcrypt --with-gd --enable-gd-native-ttf --with-openssl --with-sendmail=/usr/sbin/sendmail
View Replies!
View Related
Index.php Is Not Working But Index.php? Is Ok
I recompiled apache and php due to some problems. Now apache and php is running and I have a VB forum running fine. However, one folder has a PHP page named index.php when I type its URL I get it downloaded and it is not executed directly from the server. when I add "?" to the end of the URL[url]" it runs with no problems! Is it something wrong with httpd.conf or what?
View Replies!
View Related
Clear The File
How to clear all content in e.g file.txt via ssh(OS is Debian)? I need a script to merge contents of 2 .txt files, e.g file1.txt and file2.txt to 1 file - file3.txt
View Replies!
View Related
File Info
any idea on this error,? my fiend is having pb with fileinfo after his installation Warning: finfo_open() [function.finfo-open]: Failed to load magic database at '/usr/share/file/magic.mime'. in /home/tomita/public_html/ff/fileinfo.php on line 2 Warning: finfo_file(): supplied argument is not a valid file_info resource in /home/tomita/public_html/ff/fileinfo.php on line 3 Warning: finfo_close(): supplied argument is not a valid file_info resource in /home/tomita/public_html/ff/fileinfo.php on line 4 these are the errors he see when he use the following code <pre><?php $finfo=finfo_open(FILEINFO_MIME); $FT=finfo_file($finfo,'windows2008.png'); finfo_close($finfo); print_r($FT); ?> ~
View Replies!
View Related
|
TRACKER
