Find & Replace Of Text For Security...
Jul 25, 2007
My old VPS was hacked and an iframe html string was added to just about all the files on the server.
I've since then identified the vulnerability and moved to a new host and want to copy the accounts over but wanted to know if there was an easy way to search all the files for this html code and delete it?
For example, search all files for <iframe etc etc> and delete it?
I know this is probably rather simple...but I have no idea how to do it.
View 2 Replies
ADVERTISEMENT
Jan 2, 2007
I have a link on a site as follows: destinationsite.com/index.php?kw=test
This url is obviously going to appear in the browser window's Address bar, when the person reaches the destination page.
Is there any way to have it change the url so that the kw=test does not appear? Please bear in mind that I will not be able to change the link that the person clicks since it is with an advertising company.
View 3 Replies
View Related
Apr 28, 2009
I have an odd problem... after transferring several hundred .php files to one of our servers we noticed that the browser was showing "?" output only.
When I open the file in "vi" (we're running centos 5.x), I can see this at the end of the file:
Code:
...
</HTML>
^@^@<?php //comment goes here ?>
-------------
I highlighted in red bold the problem text. If these four characters are removed from the file (edited out manually using vi) then the file displays and works correctly.
However.. there are several hundred of these files, and some have the problem and some don't.
I've tried everything I know to find which files contain the problem, but so far no luck.
ie:
grep -r "^@" .;
grep -r "^@" .;
Basically.. I need to find any instance of these characters and then remove them.
View 3 Replies
View Related
Oct 15, 2007
how can i do a search for all files (probs using regex) of files consisting purely of numbers?
for e.g. find:
53243.php
24353.php
24098.php
(always have 5 numbers).
seems one of my accounts has had some script run which generated a bunch of these in various subfolders, and the php file basically does a callback to www3.rssnews.ws and www3.xmldata.info, which seem to be some sort of spyware servers.
View 10 Replies
View Related
Feb 12, 2008
I colo a 1U machine with 2-36gig drives. They're not in RAID, and I have it set to rsync backups to a remote machine on a regular schedule. I have another remote machine functioning as a secondary DNS. Neither of these 2 are on a large upstream pipe. I just bought 2-147gig drives that I'd like to replace the 36g's with. How does this sound for a scenario to accomplish this with little downtime (pre-pardon my noob'ish ways):
1. Do a complete rsync of the filesystem to my remote machine as well as sync the mysql db's (to 1 remote drive).
2. Pop that single rsync'd drive into an external enclosure.
3. Travel to datacenter, once there, plug external drive into laptop and start up a VM that boots off of that drive.
4. Sync again so external drive has the most up-to-date data.
5. Change over IP's from colo to VM on laptop.
6. Shutdown and swap out drives in colo'd box with the new ones.
7. Setup new drives as RAID 1, install OS, then rsync filesystem over from laptop to new drives in colo'd box.
8. Change back IP's.
What am I missing, or is there an easier way without a 2nd colo/dedicated server? Currently, the colo'd machine is using about 1.3Mbit/sec outbound and it's running a low load.
View 5 Replies
View Related
Apr 16, 2009
Recently a drive in one of my main box's has failed.
Ive contacted my provider, however there SLA states - 4 Hours for hardware replacement.
It takes 4 hours to replace a harddrive? What are they, sloths?
Anyone else had similar experiences when attempting to get drives replaced?
View 14 Replies
View Related
Jun 21, 2009
we know hypervm/lxadmin have some exploit. My server is ruuning with lxadmin. Is there any panel to replace it? I mean we can easily to reload OS, use File Manager like hypervm...
View 4 Replies
View Related
Jul 21, 2009
i have a msi server with three seagate HD,
and use seagate ST336607LC to do raid5.
the raid card is adaptec 2200S,
it is installed with centos with cpanel.
today,the websites shows 500 internal error and i asked the DC reboot,
minutes later,the websites run well.
but minutes later,it down again,and i ssh to reboot,
minutes,it shows file system problem,it seems readonly?...in my memory.
and i ask the DC to reboot again,
and i still can not login,and the DC staff tell me it shows with "operation system not found"...
and i go to DC,
it shows there is no logical drives... and operation system not found.
and i try to use ctrl+a to access raid control panel,
it shows there is no raid setting....
and i try to verify the hds in raid control panel,
it shows my 3rd hd has defect and ask if want to assign new block,
at begining,i chose no,it still can not load the os.
and then i chose yes to reassign the block and passing the verify,
but it still can not load the os.
i can not get any ST336607LC now,
i want to ask can i use larger HD to replace the 3rd hd?
if yes,after replacing and booting,
should i reset the raid configuation?
View 7 Replies
View Related
Nov 4, 2009
Currently paying 24.95/month with Hostgator on a reseller plan but am only using ~2Gb drive space and less than 2Gb or monthly transfer.
Would be nice to find a VPS that has CPanel for about the same price range.
View 13 Replies
View Related
Jan 4, 2007
I have a site but it was corrupted due to server problem with host. I have a back-up of DB in phpMySQL.
I am now installing the same script in new server and the site is now running.
The problem is, I want to use my back-up database and replace the existing one. How to do this?
View 2 Replies
View Related
Jun 1, 2009
I'm trying to replace my Linux OS with Windows Server 2003, which I already have a license.
I'm talking about OVH Kimsufi XL.
Following support's instructions, I booted my dedicated with netboot, specific with vkvm option.
Then I specified an ftp location, (where there is my "totally working" .iso), and I started the virtual session.
After some mins, a java windows appears, and starts the vnc session.
After usual linux loading, it stops on this :
Code:
VFS: Cannot open root device "801" or unknown-block(8,1)
Please append a correct "root=" boot option; here are the available partitions:
0300 244198584 hda driver: ide-gd
0301 5245191 hda1
0302 238428687 hda2
0303 522112 hda3
Kernel panic - not syncing: VFS: Unable to mount root fs on unknown-block(8,1)
And, besides I cant write a letter!
View 13 Replies
View Related
Apr 18, 2007
I would like to replace my index file every three hours, with a specified file on the server thats in a different folder (someone keeps putting unwanted stuff in my index file) Can someone explain to me how this is done?
View 2 Replies
View Related
Jan 14, 2007
I have anywhere between 80,000 - 90,000 webpages that have a single code into this. Unfortunately at the time the web developer I used didn't use PHP includes. So each .html file has the code in it.
I want a way so I can do a single command either a program or an SSH command can find the syntax in the files and replace it will code I have. Its just a single line of code that is basically for an adsense code, so the pub-blahblahblah etc..
Does anyone know of a SSH command I can use, or a program that will find and replace without manually opening up each file? 80k - 90k of opening files then find/replace will take forever!
View 11 Replies
View Related
May 25, 2014
I am trying to restore a backup that Parallels Plesk made (latest version) and I used to get the option at some point to replace everything. Now, I only get the options to select what I want to restore and it fails because it says certain things, domains, content is already there.
I can't find the option anymore that allows me to say replace everything during the backup. Was that removed? If so, I'd really....really like it back.
Warning:
Failed deployment of domain localhost.localdomain
Warning:
Execution of /usr/local/psa/admin/plib/api-cli/domain.php --create localhost.localdomain -owner admin -do-not-apply-skeleton -notify false -guid 4fe5de63-3103-4fa0-a01c-04894e167107 -vendor-guid 75b2fa01-6c6e-4cb2-8f1b-9c69757fd3ec -creation-date 2014-02-13 -ip 46.165.251.98 -ignore-nonexistent-options failed with return code 1.
Stderr is
An error occurred during domain creation: There are no available resources of this type (domains) left. Requested: 1; available: 0.
View 1 Replies
View Related
Feb 23, 2014
I have one customer installed with plesk 11.5 + power pack integrated with mssql 2008 express on his server.But now client want to install Mssql 2008 web edition. Is this possible to replace the express edition with web in plesk panel?
View 1 Replies
View Related
May 1, 2007
Say, I have a page:
say in the website of index.html there are things like
<img src="somepics.jpg">
Is there a way to set in .htaccess that we can ensure that only index.html is called?
So I do not want the client to call every image and every css file there?
How to do so?
View 5 Replies
View Related
Oct 4, 2008
I've got a dedicated server through Liquid Web. I can't say enough about how great the reliability and service has been since I switched over to them a number of months ago.
Nevertheless, with the advent of cloud hosting, I'm intrigued by the idea of paying for what I actually use on a server rather than having way more capacity than I need 90% of the day.
I've looked around here and there's a bit of talk about it but it doesn't seem like folks are scrambling into it and it also appears that the offereings are still relatively immature.
I really don't have the time to devote to tweaking, etc or figuring out something really complicated.
I'll stick to my dedicated server if it means tons of extra work or potential downtime or massive frustration but I wanted to get some feedback from the community about whether or not there are some stable cloud hosting options that are emerging that might be worth considering.
View 14 Replies
View Related
Apr 6, 2008
2008-04-06 08:52:32.597ERRORApache Binary Path must be set properly in order replace Apache, fall back to 'Reload on configuration file change'.
2008-04-06 08:52:32.602WARN[configerver:listener] No listener is available for normal virtual host!
2008-04-06 08:52:32.604ERROR[config:template:centralConfigLog] Listener [Default] does not exist
2008-04-06 08:52:32.605ERROR[config:templateHP_SuEXEC] Listener [Default] does not exist
2008-04-06 08:52:32.605ERROR[config:template:EasyRailsWithSuEXEC] Listener [Default] does not exist
2008-04-06 08:52:32.617WARNStandard Edition only support up to 5 Apache vhosts.
I did everything on the litespeed setup I was soppose to found at their wiki site. But still I recieve these errors, LiteSpeed works on my server because httpd is disabled and LiteSpeed is responding to request now.
View 8 Replies
View Related
Apr 12, 2007
my whole site is secure and inside a secure folder and I am going to be moving the majority of the site over to a non-secure folder. but I need to find all the absolute links and change the https to http. I hope I dont have to check each page one by one.
so I was wondering if there was a way to search everypage on my server for any file containing "https"?
View 1 Replies
View Related
Jul 30, 2014
We've been experiencing a lot of trouble with novice customers that want to install an Application Vault package that has sub-optimal default settings, e.g.
customer wants to install wordpress, clicks on Application Vault -> wordpress -> "INSTALL"
This will install, without any questions for settings, wordpress into domain.com/wordpress - which is not what people want. I know that there is a button with teh drop down menu that shows "custom", however, people don't see/know about it and click "install".
Is there a way to remove / replace the "quick install" button and have the "install custom" as default.
View 2 Replies
View Related
Jun 19, 2008
way to convert and add some text(watermark) to videos in Linux.
I know ffmpeg can be used to convert video but i does not add text or water mark to video.
So what are my options?
View 3 Replies
View Related
Sep 19, 2007
I have a large text file (its a log file actually) and I need to truncate each line to abou 16 characters.
how I can do this in linux?
View 2 Replies
View Related
Jun 26, 2007
I have had multiple websites hacked and need to do a cleanup. I need to run a command that will log all files (including path to that file) that contain <!-- ~ --> to a text file from the /home/* directory.
So far I have recieved 2 different ways to do it but none of them have worked
View 5 Replies
View Related
Jan 10, 2009
I've been meaning to get around to this for quite some time now, and since I've got some free time I figured I'd review NearlyFreeSpeech.net
Length of time with host: 4+ years
Sites hosted: 5 (+/-)
Basically, I couldn't be happier. They're pretty much everything that shared hosting should be. They don't oversell. They don't sell your information to advertisers. And they've got several "killer features" that few (if any) other hosts offer.
Pros
Performance
Unlike some (most?) shared hosts, they don't cram a bunch of sites onto the same server. In fact, they don't even assign you a server per se. All sites are hosted on clusters, so the most active sites will be handled by several servers working in tandem. The load balancing is automatic transparent -- if your site starts getting a load of traffic, their servers will shift your site around as necessary to ensure that it remains responsive. This process isn't noticable at all; every aspect of their service feels like a traditional shared hosting setup, the sole exception being that performance doesn't suck. Wordpress and phpBB (notorious for bringing most shared hosting plans to their knees) feel snappy and responsive, even when faced with large amounts of traffic.
Reliability
They're not perfect, but they're close. I've used several other shared hosts over the years, and I can safely say that NFSN is the most reliable of all of the ones that I've used. Again, I think this has to do with their clustering setup. I've never been told "sorry, but someone on your server crashed Apache". They do get hit with DDoS attacks from time to time (as do all hosts), but it's exceptionally rare for said attacks to cause a disruption of service. When large scale attacks do occur, they handle them quickly and professionally. There have been a handful of large-scale failures over the time I've been with them, but disruptions of service are few and far between.
Language Support
Pretty damn good. I'd say they're best at hosting PHP/MySQL sites, but they're very, very good with all of their officially supported CGI languages [url] too.
They'll also install libraries, PEAR modules, etc. upon request, even if it's something that nobody other than you will ever use.
Support
Support is second-to-none. Support is conducted via their administrative control panel. Although they do have official hours, it's not unusual to have your question answered quickly even at some ungodly hour of the morning. All the support staff are top-notch, and they all *definitely* know their stuff. They don't hand-hold as much as most hosts, but if you're reasonably competent and/or not afraid to learn you won't have any trouble. They've also got a panic button feature that I quite like -- from their write-up about the feature:
After you hit the panic button, a ticket will be opened at "Panic" priority including the text of your message. The on-call admin will also be immediately paged with the text of your message. Then, one of three things will happen:
-If you hit the panic button for a legitimate, previously-unreported system or network outage that needs our immediate attention, we will change your issue to "High" priority, refund your panic message charge, and cut the cost of your next panic message in half.
-If your message does not pertain to a legitimate problem or outage that needs our immediate attention, we will change your issue to "Standard" priority, you will not receive a panic message refund, and the cost of your next panic message will be doubled.
-If your message is clearly spurious ("Haha lolz I paged u!") it will be ignored and your ability to send panic messages will be revoked. You will not receive a panic message refund.
Free speech / censorship
Hands down, they make other hosts look like jokes. I've managed several controversial sites over the last four years, and NearlyFreeSpeech.net is the ONLY host who hasn't hassled me.
The best thing I can do to promote their service is to point you to their beliefs ([url] page. Yep. No mission statements... just three simple quotes. And they really do believe in those values.
They even go as far as to say this in their FAQ:
You must obey all applicable local laws unless you get our prior express consent in writing. We do provide anonymous hosting of content that violates local government censorship laws at our sole discretion in cases outside the United States where we feel government censorship is contrary to the cause of freedom.
Quite a departure from most shared hosts. Even more (and yes, I speak from experiene when I say that they really do hold to this):
A NearlyFreeSpeech.NET member site is defaming me or otherwise injuring me civilly.
Please forward a copy of your legal finding from a court of competent jurisdiction to our contact address. If you have not yet obtained such a finding, a preliminary injunction or court order is also sufficient.
If you are not able to obtain the above, you will need to work directly with the site operator to resolve your differences. We will have to fall back on our members' contractual assertion that the content they upload is legitimate and therefore we will not be able to get involved.
This quote really sums up their stance:
A NearlyFreeSpeech.NET member site contains offensive content.
At NearlyFreeSpeech.NET we firmly believe that censorship is a dangerous and misguided approach to the problems of society. We believe that the price we pay for the huge number of fantastic sites we host are a few sites that we feel are significantly less fantastic.
We believe that the price you pay for living in what we hope is a free society is that when you encounter something offensive, you must resist the urge to censor it and instead research, investigate, and speak out passionately in opposition to it. That is the essence of free speech.
Please do not send us abuse complaints of this nature. We will discard them.
DMCA
Ah yes. Everyone's favorite. Fortunately, NFS is sane about this (far more sane than some uh... "dreamy" hosts I've used...). Again, another excerpt from their FAQ (which I can also attest is true):
We adhere to the entire law very closely. We do not generally pull the plug on an entire site if, for example, someone claims that a single graphic is infringing. We do our best to remove only the content that the copyright owner specifically identifies as allegedly infringing. We allow and encourage the use of the "putback notification" process when material is incorrectly identified as infringing. But we do not automatically terminate a member's service merely for receiving a complaint alleging infringement. (However, actually infringing someone's copyright does violate our TACOS and will generally result in immediate termination.)
Keep in mind that while we aren't lawyers, neither are we idiots. We can tell the difference between people harassing our members via the DMCA and cases where our service is genuinely being misused, and we can adjust our attitude accordingly. Fortunately, both of these cases are very rare.
Cost.
This one's a big issue for folks on shared hosting, so it's worth going over. Basically, NFSN uses a pay-per-use model. Simply put, you pay for the resources you use. This does mean that you won't be able to "game the system" and hope to get away with a high-traffic site on an oversold server for a couple bucks a month. This also means that the system won't game you, and put your high traffic site on an oversold server. Most importantly, it means that you don't pay for what you don't use. Those 1000GB for $10 plans seem like a great idea until you realize that if you only use 1GB you're getting royally screwed.
Pricing is a little unconventional, so it's worth going over in a bit of depth:
Bandwidth
Bandwidth starts at the price of $1/GB. This may seem steep if you compare them to the prices promised in the ads of various heavily-oversold shared hosts. Fortunately, it's not a flat rate. In fact, the more bandwidth you use, the lower your per-GB charge is --and the discount is permanent. They've got a bandwidth calculator [url] if you're curious about pricing.
Storage
$1/100MB, flat fee.
MySQL
$0.01/day IIRC. Their MySQL servers are top notch FreeBSD 7 boxes, and I definitely think they're worth the price.
E-mail forwarding
$0.01/day. You can obviously use your own e-mail servers instead, or use something like Google Apps -- but if you want them to do e-mail forwarding it costs $0.01/day with no usage cap. (And yes, I do mean no usage cap. Bugmenot.com uses NFS's e-mail servers for their "disposable mailbox" service, and they have a heck of a lot of inbound mail.)
Privacy
Wow. Short of bribing an off-shore host, I don't think you'll find a more private arrangement. Unless they've got a court order demanding your details, you can safely assume that they won't be divulged. Again, I speak from experience.
Also interesting to note is this excerpt from their FAQs:
At NearlyFreeSpeech.NET, we believe that with great power comes great responsibility, so we take a dim view of such behavior. For that reason, our TACOS require our members to provide complete and correct contact information, and requests for anonymous hosting are typically denied.
However, we do make one important exception. If you live outside the United States and can demonstrate that the site you wish to host would put you at significant, legitimate risk of retaliation from a government with a documented track record of reprisal against people who speak out against it, we may be able to help. Anonymous hosting is serious business; it can be one component of a coordinated plan to protect you and your family from torture and murder. It's absolutely not an option you can use to dodge lawsuits or unpopularity arising from hosted material.
I haven't (thankfully) had to depend on that level of privacy protection -- but if I did, I wouldn't hesitate to work with them.
SFTP/SSH access
Name says it all.
Scalability
To quote 'jdw', one of the founders of the service, in response to a user's questions re: scalability:
It depends. If all you need is bandwidth, it should be pretty well unlimited. There have been a couple of cases where we have asked people to move on based on CPU usage, but those involved specific situations where they had a poorly-tuned application and couldnât or wouldnât optimize it for the load they were getting. Those were also before the days of 8-core cluster nodes.
A VPS or single dedicated server would definitely not be able to serve more bandwidth. Most of them are capped to 10 or 100Mbps; our load-sharing architecture can serve a single site into multiple Gbps if the site is fast enough (i.e. static content) and you can pay for it.
When they mention CPU usage, it's worth noting that it's nothing like Dreamhost and other shared hosts. You just won't hit it unless you've got a bug or you're trying to do something like calculate pi to a billion places. The limits that are in place are solely to prevent runaway/buggy apps from screwing things up -- you won't hit them, even with heavy usage, provided your site's software is functioning correctly.
Cons:
To be honest, there aren't many. There are some though, so in the interest of completeness, here they are:
No SSL
The reasons for this are varied, and they're actively working to implement a solution. The short story is that, due to the architecture of their service, it's not quite as simple as "drop in a cert and tweak the httpd config". Essentially, since they don't assign static IPs for individual sites, they can't support SSL until all mainstream browsers support the SNI extension.
No overselling
Some people may think the lack of "unlimited bandwidth for $7.99/mo" is a con. Others think "unlimited bandwidth for $7.99/mo" is a con. Depends on your perspective and usage I guess.
No Ruby on Rails
Doesn't bother me, but it might be a deal-breaker for someone I suppose.
Not your bog-standard cPanel + Linux box setup
Some folks would say that this is a con, due to the lack of familiarity. Their control panel is different than a lot of hosts, but it's flexible, clean, and responsive, so it's fine for me.
Perks
One thing I've come to notice over 4+ years with NFS is that there are lots and lots of nice little features that aren't advertised, but that make life just a little easier.
Examples:
E-mail to POST
Their mail forwarding can be configured to POST incoming messages (complete with attachments) to a specified URL. The format of this submission is documented on the member wiki.
Member wiki
Contains member-submitted documentation of NFSN's quirks, some of its special features, and how to best get different apps working on NFSN.
Management API
I haven't played around with it, so I can't provide too many details, but NearlyFreeSpeech offers a public API to allow for the programmatic management of user memberships, sites, DNS records, etc. Pretty cool, and not something I've seen elsewhere.
Domain registration
Cheap domains, simple registration process, and (unlike GoDaddy) they don't screw around with your registration just because you said something that they didn't like.
Haskell support
If you know what this is, you know why this is sweet ;-)
Member forums
Not terribly unique, but a great resource. Pretty much everyone there is quite friendly and happy to help new users.
Free trial
You can create a trial membership. This membership comes with $0.02 (IIRC) credit, and is a great way to tinker with their platform before depositing money.
You can get a refund
Sweet. Never had to use it though, but good to know I could if I had to.
Humor
A little thing, yes -- but it's good to see a host that actually seems like it's staffed by real people rather than bash scripts and stock photos.
Member/staff interaction
This is something I haven't seen with any other hosts. The staff interact with the users on the discussion forums. When a user asks "why do you do/say X", they get a response. They have discussions on why they decided to do/say X. Members ask for Y to be available through the web control panel, and some time later a staff member bumps the thread to point out that Y has been implemented.
---
Verdict
If you need shared hosting, you'd be doing yourself a disservice by not trying NearlyFreeSpeech.net
View 14 Replies
View Related
Jun 28, 2009
How can config LVM with RAID1 in text mode centos 5.3 installation?
I need to do it for xen installation.
View 3 Replies
View Related
Apr 24, 2008
Anyone know a good cheap host that allows text based rpgs? I run a text based mmorpg that is somewhat busy, about 400,000 pageviews a month.
View 5 Replies
View Related
Apr 9, 2008
I have a SuperMicro server with AOC-SIM1U.
I was able to login from IPMI View just fine, and everything works as expected except
"Text Console ". I was able to hit the start button and get the black screen on IPMI View, but that was just about it.
Only a cursor blinking without texts.
Is there something else that I should do in order to get text console working? I've tried all baud rates.
View 5 Replies
View Related
May 24, 2008
how I might be able to execute a Linux command by sending a text message to some email address? Where if that email address gets a message (either any message, or perhaps only messages containing some password), a Linux command is executed, e.g.
named -u named
Perhaps via bash script.
View 14 Replies
View Related
