Prevent IPs Unallocated IPs Being Used

Sep 13, 2007

We have been using our L2 switches functionality to only allow IPs that are assigned to a particular server to be accessed for sometime. However, the latest version of this particular switch no longer includes this feature. Moreoever, it is quite a labor intensive task which is not good for "budget" servers.

I am considering moving the rules to the main router, but am afraid of the scalability of this. Will it hold up with a few 1000 servers?

How are other hosties going about this? I have heard that some just don't bother at all, which leaves their clients open to having their IPs duplicated by others on the same subnet. This can't be good....

View 1 Replies


ADVERTISEMENT

How To Prevent Rm -rf /

Jul 4, 2009

Does anyone know anyway that "rm -rf /" can be disabled? OR any selinux rule or something to prevent this?

Or if I wanted to prevent a certain directory from being deleted like backups but something unlike chattr that someone can figure out quickly.

Im sure LOTS of people would like to know about this. Ive searched around and only somewhat useful thing I have found is an rm wrapper that sends everything to a trash file in the root of the mount point.

View 14 Replies View Related

How To Prevent DNS Flood

May 28, 2008

Can anyone share tips how to prevent DNS flood on a cPanel and Directadmin server platform on Centos?

View 7 Replies View Related

Prevent Phishing

Jun 1, 2008

I'm not that techy I'd like to ask why this person downloaded the file below before uploading some phishing webpages on my account ? I've changed my password numerious times from different computers and even from mobile phone just to check if the person can still get in. But again it is no use the person were able to upload phishing pages.

logs:

May 25 21:50:42 server100 pure-ftpd: (weblogin100@62.56.133.36) [NOTICE] /home/weblogin100//.htpasswds/update/Login.php downloaded (21251 bytes, 755.78KB/sec)

Right now I deleted all other scripts on the account and remain some htmls. Folder were also set to 644 no 777, while waiting if the person can still upload his phishing pages please help me why he downloaded the file above. I've check the file on my account and I cannot see Login.php. By the way I have a root login and only two accounts were a constant phishing victims.

View 1 Replies View Related

How Prevent Hackers Away

Feb 21, 2007

I am giving few tips on securing your server against hack attempts. You must check these inspite of other securities like firewall, rootkits detectors etc.

1. Most Important, do not disable safe_mode under php.ini. If any customer asks to disable it, turn it off on his account only, not on whole server.

As most of the time attack is done using shellc99 (phpshell) script. In case safe_mode is off on server and there are public dirs with 777 permission, he can easily hack through.

2. Compile apache with safe mode as well.

3. In cpanel under tweek settings, turn on base_dir, if someone requests to turn off, turn it off on his/her account only. As using phpshell one can easily move to main server dirs like /etc, /home.

4. Do not allow Anonymous Ftp on your server. You can turn it off from ftp config under WHM Service Configuration. If its allowed, one can easily bind port using nc tool with your server and gain root access. Always keep it disabled.

5. Make sure /tmp is secured. You can easily do that by running this command /scripts/securetmp using ssh. But do make sure, /tmp is secured. Else one can upload some kind of perl script in /tmp dir and can deface or damage all data on the few/all accounts on your server.

keeping your server secure from hack attempts.

View 7 Replies View Related

Prevent Php Script Run As .gif Or .jpg

Oct 28, 2007

Does anyone know how to prevent some shell, php script change file name from file.php to file.jpg or file.gif and upload to server and run it to attack server?

View 14 Replies View Related

Prevent Ddos

Sep 11, 2007

from 2 days ago until now my server be ddos and i stay in my computer and block ip but it is not finish is a program to do block ip automatic?

View 2 Replies View Related

Prevent Mass Download

Sep 21, 2006

i need any thing to prevent mass download

my server is cost a huge bandwidht monthly . because mass downloading?

View 1 Replies View Related

Prevent From Iframe Virus

May 24, 2008

I need to know so idea, how to prevent iframe virus injection into the server,also is there is any mod which help in protection for iframe virus.

View 14 Replies View Related

How To Prevent Nobody To Move In Server

Jun 13, 2009

i have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..

as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that?

View 7 Replies View Related

Mod_security To Prevent Some Script

Jul 30, 2009

I try to use mod_security to prevent some script in some files,

imagine I want to block all scripts includes "test" in the body

so if code of script.php is:

HTML Code:
<html>
<p>test</p>
</html>

and someone run script.php , I want block running and show 406 error

now can you tell me how can I write this rule in mod_security 2 with apache 2?

I use SecRule RESPONSE_BODY "test" but its now working ...

View 8 Replies View Related

How To Prevent Perl From Working

Jan 12, 2008

I have a cPanel/Linux server, runing apache as a webserver.

i want to know how can i prevent perl/cgi files from working on all virtual hosts on both apache2/apache1.3!

View 14 Replies View Related

What Can I Do To Prevent DDoS Attack

Aug 4, 2008

My site was recently under a DDoS attack and was down for a few days, the attack came from Russia i believe.

The people who did it asked for $800, but of course i didnt pay. My hosting company did the best they could in order to stop the attack but it still lasted a few days and badly hurt my rankings.

I moved my site to a dedicated server, but i dont know what kind of software/hardware i need to install on it in order to prevent more future attacks, the hosting company suggested a few things but i dont know if they are just trying to get more money out of me.

View 3 Replies View Related

Prevent User Use Custom Php.ini

Apr 26, 2008

I have added some functions in php.ini for security.

But when user use their php.ini file located in their account, all functions enabled again.

How can i prevent user custom php.ini?

View 10 Replies View Related

How To Prevent OOM (Out Of Memory) Crashes

Aug 19, 2008

I have a colocated server with the following specs:

Intel Core 2 Quad Q6600 2.4Ghz
4GB RAM
400GB SATA Drive

I have a problem every few days, the server keeps hanging up and giving an "Out of Memory" message and SSH just hangs and doesn't connect. Every time i have to call out a tech to manually reboot it.

Is there a setting i can change to make SSH connect even when it is out of memory, or anything that can prevent it happening?

View 6 Replies View Related

Prevent Directory Listing

Apr 2, 2007

I've just made a transition from a VDS to a Dedicated and I'm having problems preventing directory contents from showing. In my previous server whenever I created a directory, it would automatically give a 403 when you tried to access the directory directly in your browser (which is what I want). Now when I set up directories in this new dedicated the contents of the directories display when there is either no index page or if I didn't have an htaccess file preventing it from listing the contents.

So what im asking is how did my previous server automatically set up the directories to not display the contents but use the contents and allow access to say for example pictures in the directory?

Is there a way I can have apache automatically do this for me or do I have to place a blank index page in every directory i create or have to place an htaccess file in every directory I create? How can I protect the contents with a 403 but still allow the contents to be accessed only through full path?

View 13 Replies View Related

My Server Was Hacked -- How To Prevent This

Oct 2, 2007

My server was recently hacked and I'm looking ways to secure it in the future. I use the server to host my own websites.

It was hacked to be a spam server. I traced the new files the hackers added to my "upload" directory, which is where my site members upload pics. I had set the directory to chmod 777. Could someone hack that directory solely from it being its rights being 777?

The site was custom developed in PHP, and looking through it myself, I couldn't find any security issues. But then again, I may not know what exactly to look up.

I would appreciate any general tips to protecting a server, as well as general tactics hackers use to hack a server and PHP site.

View 13 Replies View Related

To Prevent Local Hack

Nov 29, 2007

I try to enhance my server security and prevent local hack but it seem useless.

I tried to chmod home/user/public_html to 711; disable functions; enable php open_basedir.

I can stop some popular shell such as c99shell.php but server can be hacked local.

Anyway to prevent it completely?

View 5 Replies View Related

Way To Prevent Iframe Attack

Oct 31, 2007

some sites on my server is inserted iframe code to its homepage index.php and index.html
I found this topic is discussed on WHT for sometimes but no solution yet. I found a article help to solve this issue but i am lack of knowledge to understand the article.

[url]

View 4 Replies View Related

Prevent Download Manager

Jun 8, 2007

Download manager software usually split files to many parts than download them at the same time. Will it makes server load higher, if yes how to limit the parts of file they can split to?

View 3 Replies View Related

How To Prevent Customer From Using PHP Scripts

Mar 6, 2007

Is there a way that I can prevent certain customers from using PHP scripts with their account?

For example, I'm planning to offer some free hosting accounts (along with paid ones) but do not plan to allow PHP or Perl scripts with the free accounts as I'm worried about the server being exploited. (That could also happen with paid accounts but less likely.)

View 7 Replies View Related

Prevent Hacking/spamming

Jun 2, 2007

Will I depend on my hosting account(SSL) in preventing a hacking/spamming case scenario? What do I need to know to prevent hacking/spamming?

View 5 Replies View Related

How To Prevent Hacker Enter My Host

Jul 13, 2009

I want to ask about some tips to prevent my blog from hacker attack. My friends experience this and i dont want this happen to me. Is web hosting technical support can fix my host server if hacker break it out?

View 10 Replies View Related

How To Prevent DDoS Attacks CentOS

Jul 23, 2009

I believe that my site is being DDoSed against, and I'm wondering how I can prevent this from happening.

I'm running CentOS 5.3.

Are there any server side scripts of PHP scripts that could be used to dynamically block out IP's that are consuming too many resources on the VPS?

View 14 Replies View Related

Check And Prevent Ddos Attack

May 25, 2009

While working with different issues, I have seen that many clients complaining about ddos attack on their server. So, I am posting here some useful commands to check and prevent ddos attack.

First of all when you see that your site's or server speed is very slow even though there is not much load on your server, you can guess it might be ddos. Then run 'top' command and see which processes is more, if those are httpd then fire following command
which will show how many active connections your server is currently processing.
netstat -n | grep :80 | wc -l
netstat -n | grep :80 | grep SYN |wc -l

The first command will show the number of active connections that are open to your server. The number of active connections from the first command is going to vary widely but if you are much above 500 you are probably having problems.If the second command is over 100 you are having trouble with a syn attack.

netstat -anp |grep ‘tcp|udp’ | awk ‘{print $5}’ | cut -d: -f1 | sort | uniq -c | sort -n

That will list the IPs taking the most amounts of connections to a server.

use follwoing command to block a ip with iptables on server

iptables -A INPUT 1 -s IPADRESS -j DROP/REJECT

service iptables restart

service iptables save

--------OR---------------
You can place ip's which you want to block in hosts.deny

vi /etc/hosts.deny

httpd: IP

write and quit

---------------------------

Then KILL all httpd connection and restarted httpd service by using following command

killall -KILL httpd

service httpd startssl

-----------------------------------

This are all the step to check and prevent ddos on your server.

View 4 Replies View Related

Prevent PHP Files Used For File Uploading

Jul 3, 2009

It appears that some people like to take advantage of those files for online web applications such as Wordpress which have php files with permissions set to 777. They use those as a means of creating an upload file. The upload files that they create then have access to the whole server somehow... Is there anyway of preventing this from happening?

View 8 Replies View Related

How To Prevent Shell Hacking Like C.100 / R57 Exploit?

Apr 23, 2009

one of my client account has just been hacked with c.100 exploit. This method injects 1 php file that acts like fully featured file manager. This hacker use my client account to place multiple scam & phissing sites

now i'm wondering if this kind of exploit hacking have a way to counter them as my friend that there aren't any proved method untill now :-/

This is the php file i've recovered:
<<url removed>>

FYI, my server configuration:
- apache 2.2.11

- centos 5.2

- cpanel + whm 11.24.4

- suphp, clamav & modsec enabled

View 14 Replies View Related

How Can I Prevent Spam Email To Be Sent Out By My Servers?

Jul 2, 2008

How can I prevent spam email to be send out by my servers?

How can I restrict how many emails per hour can be send based on domain name? I know hostgator and hostmonster has that type configuration.

View 1 Replies View Related

How To Prevent Staff Steal Our Site

May 11, 2008

Become my attention when we hire company/people to handle our server due our knowledge about manage dedicated server is low level and we run big site on that server.

Anybody know about tips how to prevent staff from managed service steal our site,even they has been trusted and handled hundred or thousand servers.As we know when we hired them for full managed service,they have our root access.

View 5 Replies View Related

Using IPSec Policies To Help Prevent DoS Attack

Apr 22, 2008

Is it possible to use IP Security policies in Windows Server 2003 to help prevent types of DoS attacks? Today my server was attacked by a single attacker who merely connected and disconnected on open ports at an incredibly fast rate. This was enough to eat the cycles of the server processes effectively creating a DoS attack. I was hoping IPSec could help prevent this, but I'm open to use any other software as well.

View 4 Replies View Related

How To Prevent Email To Root Account

Feb 27, 2008

I'm running a webosting server under linux with sendmail as mailserver.

The problem is that many spammers send mails directly to the root account by using one of the existing pseudo accounts like "apache, uucp, root, ...". In a default sendmail installation, apache, uucp, root are defined as alias and point to root. I do virtualhosting so I accept mail for several domains. If a spammer send mail to root@anotherdomain.com, the spam will also arrive in the root account. If I define a bounce all for my main domain, I have problems because root@mymaindomain.com and apache@mymaindomain.com do not exist anymore. This results in user unkown when apache or root try to send a mail out.

So, how do I prevent spammers from sending mail directly to the root account? Is it possible to accept only local mail to the root account?

View 7 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved