Seeking About Security & Safe Company
Apr 9, 2009I need to ask, what's best company of Secuity and Safe servers.
So I hope any one can answer my seeking.
ADVERTISEMENT
Php Safe Mode OFF And Security
Oct 2, 2007I have found on one webhost that they have very cool feature:
Here is what they say:
Quote:
Browsing through any webhost related forum will reveal that giving safe mode off poses extreme security risk to the server. Because it offers hackers a great advantage to access any other members account or read their sensitive files which usually contain passwords.
But then some genuine scripts won't work with safe mode ON. Meaning you could turn it on per member requests but that takes lots of labor.
So we completely reprogrammed the safe mode PHP source code and recompiled it. As a result ours safe mode OFF is light-years safer & hacker-proof then standard PHP v5 safe mode ON.
So all our members are getting safe mode OFF, with harder security then those hosts who offer Safe Mode ON.
So now I am wondering, how they did that? I have searched forums and Google for lots of different keyword but haven't found anything.
I believe a lot of you running Apache as nobody and having php save mode OFF. It there any way you protect yourself? phpsuexec is not a solution now as it increasing load.
Security Management Company
May 15, 2007My server recently was hacked and the hacker put up a Bank of America subdomain phishing site. My box got unplugged because of it.
I remember months ago there was a company that everyone was recommending to manage servers where they go in and tighten all security vulnerabilities, apply patches, etc etc at a low monthly fee.
Can anyone direct me to what company is the "recommendation of the moment" ?
Recommended Server Security Company
Mar 22, 2008I need a good and fast company that are experienced in Linux servers to secure my server, can you recommend anyone?
View 0 Replies View RelatedCompany Recommendation For Security Audit
Jan 5, 2007Can someone recommend an affordable shop that performs security audits a more specifically network and web-application penetration tests?
View 3 Replies View RelatedMajor Security Problem With Mavrick Team Web Hosting Company
Mar 23, 2008I am a web designer, and have been doing this for about 5 years now and have never encountered such a problem. I had a problem come up a few days ago where one of my clients got into an argument with the Mavrick Team web hosting and computer services company's owner regarding services. She has reported to me that he went into her email account, and has emailed her clients false information about her services after their heated discussion. She told him that she was going to press charges. He told her that he had harvested all of her clients email addresses and will email them to her competitors if she does not back down. What can she do? I feel awkward as I am in the middle of it now. I was the one who referred her to Mavrick Team (aka as I host them) for web hosting services, and moved her site to their servers. This man has created such a big problem for this women now. Her clients are doubting her services and he is blackmailing her. She does not owe him any monies. She has forwarded two of the emails that her clients forwarded to her, so I know she is not making this thing up. I advised her to move all of her emails to a personal email account, contact all of her clients to let them know that someone has access to their info, and I am helping her move her site. Who can she report them to?
View 12 Replies View RelatedSeeking Windows Web Hosting
Mar 13, 2008I've been looking everywhere for a half decent, affordable, windows web hosting company. Everyone has CPanel/Linux, and I'm looking for Plesk + Windows. I'm gonna be buying a dedi soon that will run on windows, but I want some shared hosting too.
If you could refer me to some decent hosts, that would be great (and I hate oversellers)
Seeking Premium VPS ($50 - $70 Small Pkg)
Sep 10, 2008if you know any premium VPS hosts.
Their price on the *Smallest Package* must be around $50 - $70.
I will not consider any companies that carry $20.00 VPS packages.
I want a rock solid VPS.
No Mickey Mouse, Dollar hosting for me.
What I want:
Linux,
C-panel or Hsphere
Fantastic - not important
Disk space - not important (finding a good host is more important. I can always buy more disk space)
Seeking Buying/Setting-up Server
Jan 9, 2007Me and a friend want to buy a really cheap server. We're kind of tired of buying hosting of people, VPS, dedi even if the price is really cheap.
For once we'd just like a little server ourself. We are located in the UK.
We're hoping to spend max £110. So far we ain't been able to get a good deal for that much.
(tried ebay)
To make a pc - it would cost us more than that pricewise. To buy an old one and do few upgrades.. it would still cost us a bomb.
Do you know where I can purchase cheap pre-built webservers direct? I can't seem to find any websites. There mostly £200+
Also I'm hoping to run windows platform (mainly due to near null experiance with Linux), what simple software can I install to get:
FTP
Webpages//PHP
DNS
running? (other than apache which still look's complex).
My main problem is where to buy a cheap server.
Seeking Futurehosting Customers In The Dallas Datacenter
Apr 27, 2009Are there any FutureHosting customers out there (Dallas Datacenter) who wouldn't mind PM'ing me their domains to test SMTP response time tomorrow? I have a server with them that is showing intermittent SMTP timeouts and response time spikes close to 20 seconds and I am trying to figure out if it is something on my node or the network.
I don't need anything special other than a domain name -- I won't be pushing email through the server just need to know how quickly the SMTP service provides a welcome message and responds to a HELO command. I will share any reports I produce with you.
The spikes are just occuring during business hours and support is having difficult tracking down the issue.
Large Forum Seeking To Block Proxies. Can It Be Done?
Jun 5, 2008I am a staff member at Markee Dragon (www.markeedragon.com), a large gaming targeted forum. We have a slight dilemma. We are looking for ways to stop as many proxies as possible from entering the website. We don't want the hassle of single IP banning and are looking for something somewhat automated. From my experience there is not much you can do with proxies but hopefully I am wrong and someone knows a solution to this.
The reason we are trying to have proxies blocked is because of the nature of the website.
We are a trading site and scamming has given Markee Dragon somewhat of a bad name and we are trying to combat against that. Most of the scammers who are banned just evade the bans through proxies.
PHP Safe Mode On Or Off
Nov 6, 2009What is the best option in the php setting does keeping the php function safe mode on or off?
View 12 Replies View RelatedPhp Safe Mode
Apr 9, 2009i need to enable php safe mode on for my joomla and i came across this
Quote:
When the php safe mode is turned off globally by default at our server end, you can still override the setting to turn it ON for only your domain by just insert the following line inside the ".htaccess" file (at Linux server):
Code:
php_value safe_mode "1"
my joomla .htaccess file:
Quote:
##
# @version $Id: htaccess.txt 10492 2008-07-02 06:38:28Z ircmaxell $
# @package Joomla
# @copyright Copyright (C) 2005 - 2008 Open Source Matters. All rights reserved.
# @license http://www.gnu.org/copyleft/gpl.html GNU/GPL
# Joomla! is Free Software
##
#####################################################
# READ THIS COMPLETELY IF YOU CHOOSE TO USE THIS FILE
#
# The line just below this section: 'Options +FollowSymLinks' may cause problems
# with some server configurations. It is required for use of mod_rewrite, but may already
# be set by your server administrator in a way that dissallows changing it in
# your .htaccess file. If using it causes your server to error out, comment it out (add # to
# beginning of line), reload your site in your browser and test your sef url's. If they work,
# it has been set by your server administrator and you do not need it set here.
#
#####################################################
## Can be commented out if causes errors, see notes above.
Options +FollowSymLinks
#
# mod_rewrite in use
RewriteEngine On
########## Begin - Rewrite rules to block out some common exploits
## If you experience problems on your site block out the operations listed below
## This attempts to block the most common type of exploit `attempts` to Joomla!
#
# Block out any script trying to set a mosConfig value through the URL
RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
# Block out any script trying to base64_encode crap to send via URL
RewriteCond %{QUERY_STRING} base64_encode.*(.*) [OR]
# Block out any script that includes a <script> tag in URL
RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
# Block out any script trying to set a PHP GLOBALS variable via URL
RewriteCond %{QUERY_STRING} GLOBALS(=|[|\%[0-9A-Z]{0,2}) [OR]
# Block out any script trying to modify a _REQUEST variable via URL
RewriteCond %{QUERY_STRING} _REQUEST(=|[|\%[0-9A-Z]{0,2})
# Send all blocked request to homepage with 403 Forbidden error!
RewriteRule ^(.*)$ index.php [F,L]
#
########## End - Rewrite rules to block out some common exploits
Is It Safe To Remove All Of /tmp
Jul 6, 2009My /tmp on my cPanel hosting server is nearly full, and I was wondering if it is safe to remove all the contents in /tmp, if not, what can I delete to clear up the space?
View 6 Replies View Related755 Permission :: Is This Safe?
Feb 15, 2008Most of my files are 755 as permission. Is this safe?
How about putting all files under 644 permission? What is the best permission so that all files are safe from intrusion?
Safe Mode VPS
Aug 30, 2008I have a script that needs safe mode off to run, the script writers have said safe mode is disabled as default and not required and even disabled in php 6
Now I'm not to fimular with Safe mode, all I know is most scripts are wrote to work with this on
Safe Mode On Or Off
Jun 3, 2008Should i switch safe mode on or off . Right now i am using it as on some one told me if i switch it off then server can easily hack but becoz i switch it on im having too much problem specially users of sites having problem of uploading and wordpress also have issue and some more script what you say what should i do?
View 9 Replies View RelatedHow To Safe Mode On/off
May 13, 2007how can i make "safe mode on/off" using .htaccess?( in SharedHosting )
View 1 Replies View RelatedPHP Safe Mode
Nov 27, 2007I would like to know as to whether or not you have php safe mode turned on? If you do, please specify why, and would you allow your clients to turn it off?
View 13 Replies View RelatedPhp.ini In Public_html, Safe
May 12, 2007I'm a customer and don't know much about server management, so like title says, is it okay to put php.ini in public_html?
View 14 Replies View RelatedPHP Safe Mode - On Or Off
Sep 17, 2007I searched but couldn't find much - should you run PHP with safe mode on or off on a shared (Linux) server?
View 3 Replies View RelatedJoomla Security / Linux Security
Apr 4, 2008I run a web hosting company and one of my servers is a LAMP server running CentOs 5. A user of mine has a Joomla installation running to manage his website and he has run into the following problem that I am puzzled by.
When Joomla adds a component or module to itself, or when a user uses the Joomla upload functionality, Joomla will add the new files under the user name "apache". This makes sense as it is the apache service running PHP that is actually creating the files.
However, when he FTP's into the account to modify these files, he doesn't have the appropriate permissions to do so as he doesn't have a root level login, just permissions on his home directory which is the site. Any help would be much appreciated.
Also, does anyone know how to change the owner/group of a directory and all of its sub directories in Linux without changing the actual permissions? I.e. some of the files in the folder have different permissions (0644 as apposed to 0755) than its parent but if I do a top down user/group change on the folder it will change everything in that folder to 0755.
Is It Safe To Enable Exec()
Jun 21, 2009I am trying to install gallery 2.3 and it requires exec() to be enabled for some functions. Is it safe to enable it in php.ini?
In php.ini file I see this, disable_functions = symlink,shell_exec,exec,proc_close,proc_open,popen,system,dl,passthru,escapeshellarg,escapeshellcmd
I have CentOS running on my VPS.
Hacker Safe Host
Mar 25, 2008As with many sites. my site was hacked recently. my host was so negative about this. they didn't notice the hack attempt although it took the hacker 9 hours to break through.
after that I made some search on my host to find that it is not a real host at all. they are just resellers to another company. I was very disappointed, Then I decided to go to a better host who can protect me from hackers.
I read some threads about 'hacker safe host' but they all in general don't give a real name of trusted 'anti-hackers' companies.
can you guide me to some of the famous hosts?
if you can't my friends got a VPS hosted with WestHost. he offered me to move my site to his VPS. is west host trusted about hackers?
Safe Mode For A Domain
Aug 2, 2008i have a cpanel server.. can any one tell me how to allow safe mode to a specific domain?
View 1 Replies View RelatedSafe Mode OFF And Open_basedir Set...
Jan 18, 2008I am going to run a free host, yes I know I should post this in FWHT but well, they dont answer very fast if at all.
It is very dangerous to have Safe Mode OFF on a free host, but someone was telling me about open_basedir, which makes it so they cant touch any files set outside of open_basedir. Would this be suffiecient to keep them from touching others files? I know I need to disable other functions like exec() and stuff but would open_basedir keep hackers away from others files and hacking them...
Safe To Delete These Files
Feb 12, 2008I am running my VPS on direct admin panel, my disk space is going low, so i am deleting few junk / log files
Kindly let me know
1) is it safe to delete data of this directory -
/var/log/httpd/domains
The File names in above directory are such as - " domain.com.bytes "
As it is occupying 600 MB space
2) where can i delete much junk / temp files, to free up space.
AWBS Vb Safe Mode
Aug 11, 2008To Install www.awbs.com scripts to my server
How Can I Do This Following to one site on My server
safe_mode Off
allow_url_fopen On
session.auto_start Off
tell Me that i can do that from httpd config
Is It Safe To Put /usr/local/bin In Basedir
Nov 7, 2007I am trying to assist a customer install a Dolphin CMS but it returns some "open_basedir restriction in effect" on /usr/local/bin/php (it needs the path to the PHP binary).
If I put /usr/local/bin/php in httpd.conf -> php_admin_value open_basedir "..." it seems to work and it finds the required binary but...is this safe?
Calpop Not Work Safe
Sep 19, 2007I stumbled upon this through google images...click as you wish. They are clothed, just riskay. And in calpop! LOL! I wonder who that guy is? Yes, off topic I know. Maybe a repost.
[url]
Which Files In /var Are Safe To Delete
May 5, 2007I have WHM 11.1.0 cPanel 11.2.1-C11635
FEDORA 4 i686 - WHM X v3.1.0
My /var partition is over 64% full. 2 directories in there show a lot of space being used.
One of these is /var/lib/mysql
du -h --max-depth=1 #
shows user accounts on the server with their database names. Are these just logs, or are they the actual databases? (Probably dumb newbie question)
The other big one is /var/log/munin Is there anything there I can delete?
