Problem With Files Owned By 'nobody' When Uploaded
Aug 4, 2007
I used to have my apache 1.3.37 with PHP compiled as a CGI. Whenever i have a php script (say vbulletin forum software) that allow file uploads, files will be uploaded with the correct userid and groupid on the server. However, once i compiled PHP as ISAPI module, the files will be uploaded but will be owned by 'nobody'. Of course i can log in as root and chown it back to the right user, but it's a hassle if there are multiple user accounts on the server and they're using php software on their end. If someone is using an ftp program and tries to overwrite that uploaded file that's owned by nobody, it will not let them do so. Is there a way to fix this, or change the config files that would fix it?
I have a dedicated server, the server itself is secure (as far as I know) and I run lots of my sites from it. I offered a friend hosting for his flash based chat application he built.
Today I was contacted by someone; "Are you the owner of xxxx.net?" so I informed that yes, it was my server and they then showed me an email they'd received from my server. I did a search and apparently someone uploaded mail.php and a couple of files it was using to send out spam based upon a variety of conditions that the other files met. The files contained forenames and surnames, it'd use a forename and a surname then send it to popular free mail services. The email contained ramblings about new world order and promoted a website.
How can I find out how they got the files uploaded to the account and what action can I take? I checked the whois for the domain and have their contact information, however it's a large site so I'm doubtful that the owner did it. I don't want my servers IPs being blacklisted for spam :|
I am wanting to know if there is a way to stop files being uploaded to my vps, via ftp cpanel etc that are malicious..
I have been told there is a way to do this but i havent been told how..
Basicaly i want to know if there is something where i can add a list of keywords that are in the malicious files and what ever it is will stop them from being uploaded or if they manage to get uploaded onto my vps will it make them not work?
I am looking into this as i had an issue before where someone uploaded a shell onto my server :@ luckily it didnt cause no damage or he didnt get anywhere but i still want to be safe.
I have a RHEL 4 plain server, and im using vsftpd server, i can not find an option to specify the max size for uploading files... does anybody know something about this?
I've recently started experiencing some issues where files uploaded through Joomla or some other scripts (mostly PHP) inherit a permission of 600. Prior to updates being done on the server I'm hosted on, uploaded files received 644 permissions and all things worked great.
I've checked the umask that assigned to the shell (022) and have ruled out that as a problem.
There is a domain name in my WHM that does not seem to be owned by anyone, it just gives the username for the domain like below, but does not show who the domain is owned by (ie: root).
i have a tembak which is compiled from tembak.c and takes up processes. i have deleted the files from the server however it pops backup again in the same directory.
Mitch: ok, What i would ask you to do is place a trouble ticket via PAM and i will forward this to our senior technicians and admin team for further review
victom: firefox picked it up as a phishing website but IE6 is not so lucky
Mitch: More then likley due to the outdated security fetures in IE6 it is becoming easy to get around it
victom: that and your running some exploitable services on that VPS prob. I use to work for a webhost
victom: trouble ticket via PAM?
Mitch: Are you currently a Host ireland customer?
victom: Hell no I got a spam email from umm hold
victom: 83.244.130.107
Mitch: Ok, So we can track this issue could you please send us an e-mail to support@hostireland.ie
victom: so looks like you got at least 2 owned boxes
there is anyone out there who has their infrastructure colocated in cogent owned datacenter. And how stable and secure is it. The only reason i m interested in Cogent owned colo is that they provide solid SLA.
I'm looking both at powweb website and dot5hosting and the products page look exactly the same with different colors. Are they owned by different owners, or do do their pages just look the same?
I log in to FTP and I try and upload an updated file (the file already exists on server). It prompts me to overwrite and I say yes but when I refresh/check the site the page hasnt changed - I then tried uploading the file again and it still says the existing file size (so I know it hasnt been replace).
Any idea why it it not overwriting?
The files are CHOWNed my the owner (FTP user) which is myself.
I uploaded my file to web server(html, image file and css file), but strangely after uploaded it to server all file that I uploaded size 0 KB. I uploaded it using WS FTP.
have built quite a library of music now. It would be great if I could upload music to my hosting account, and then just access it from my phone. Would that be allowed so long as I did not share this music with others? Where might I be able to set this up? I checked with hostgator and they said it was not okay.
