how can I get sure there is no shell access to my server exept mine. I mean alkl the security issues I should care for preventing shell access from all my users and hackers.
I have diabled all the shell accesses of my users via Cpanel.how can I disable the exec() function on my server?
I have a script that needs to be run from shell access, but I've never done this before. How do you access a script through shell? Is there software I need to download? Not even sure where to begin.
I have never used SSH/Shell Access, but think I may want to. Can someone explain what it is, and maybe explain how to use it? My web hosting provider provides SSH, but I have no clue what to do.
I've enabled ssh one of my account in WHM, so I went to cpanel of this account and tried the SSH/Shell Access, but what I got is:
For security reasons, shell access is not enabled by default. In order to activate shell access on your account, you will need to fax or mail a copy of your driver's license, passport or other photo id to customer service.
is this something about SSH Key? do I have to generate a key so I can use the SSH/Shell Access?
i have a dedicated server i get server for study unix manage i have a problem by SHELL FILES ( hacker shell file ) other Site can Upload Shell file and get Access for edit other Site in server i set tweak scurity in CPANEL and Disable Function and i give not Shell access to all site but hacker can hack me by Shell access Hacker can not hack me by c99 Shell but can hack by New shell i upload this shell in my server Link: [url]
I know there are so many similar threads related to this issue in this forum, I know but my situation is a bit different from other guys, please read the following lines,
I've got a forum with approximately 100 users concurrently, now I'm looking for a shared hosting with relatively high simultaneous MySQL connections number at least 50 and also allows Shell access to dump or restore the MySQL database. but the main problem is lots of US hostings do not host Iranian I dunno US government has problem with Iran's government but I can't understand what's my guilt in this debate?
transfer a client's site files (over 220 MB) to my server. The client does not use cPanel or have SSH access.
FTP is horribly tedious. I have created the account on my server and have SSH enabled. I have a feeling I can use wget to download the files to the account's home directory, but I am not sure of the correct syntax to recursively download all the directories and the files.
I'm designing a site, www.streetsmartscooters.com, to (obviously) sell scooters. Just yesterday I saw on my Google Analytics that people were getting to my site by searching for X-treme X-10, a particular brand and model of scooter.
I typed the keywords into Google to see what my rankings were, and I was on the fourth page. But the green URL in the search listing showed up as mamafocka.com.
When you go to mamafocka.com, it's all the same information as my website, and changes I make through my FTP login update immediately. If you go to streetsmartscooters.com, you can click on the "Electric Scooters" link on the left nav and it will keep you on mamafocka, but give you the exact same page as on streetsmartscooters (I set that particular link to be relative in the includes file).
My site is hosted on a Windows 2003 virtual server from GoDaddy. SelfSeo.com says that mamafocka.com and streetsmartscooters.com both have the same IP - 208.109.99.16. I just signed up for a dedicated IP address tonight from GoDaddy, but I'm not sure how long it takes to propagate.
Will getting a dedicated IP fix this problem, or have I wasted 6 bux? Is there any way to block that domain name from pointing to my site? It doesn't look to my novice eyes like this is a redirect.
Also, I installed FreeFind on the site earlier this week, I believe. Could somebody have messed with something through that?
Let me start off by saying I'm not here to trash TheNYNOC or anything of the sort, in fact they've been fairly pleasant to me sofar. But I'm wondering if anyone else is having problems with the recently advertised E7200 dedicated server special they've been advertising here at WHT?
When I first ordered my server a couple of weeks ago it was delayed an extra couple of days because they were having problems with the E7200 Core 2 Duos getting along with the motherboards they were using - no big deal, I know from experience that the E7200 is a great little C2D but it can be a real booger with certain motherboards. (Some boards still can't handle the new 45nm cores) But they finally got my server delivered and BOY was it FAST compared to my old Celeron 2.4ghz that I had at ExistHosting (now GoGax). I was one HAPPY camper.
Well tonight I come home from a party to dozens of emails from people saying half of my sites are down, email isn't responding, etc. Upon logging into the server I quickly discover that there is an apparent hardware failure of MASSIVE proportions going on. Half of the files on the server were missing, what was still there was corrupt, and almost every basic linux command resulted in a nasty I/O error.
Code: Last login: Fri Aug 15 23:23:29 2008 from XXxxxx.swbell.net [root@hammond ~]# fsck -bash: /sbin/fsck: Input/output error [root@hammond ~]# shutdown now -bash: /sbin/shutdown: Input/output error [root@hammond ~]# vi Vim: Caught deadly signal BUS Vim: Finished.
Bus error [root@hammond ~]# Before Vim completelystopped working I also spotted some errors in /var/log/messages complaining about a couple of bad sectors on /dev/sda1 and /dev/sda2 so I suppose I could have just gotten a bad HDD... I dunno though something seems weird.
So I'm wondering, has anyone else with this particular server from TheNYNoc been having problems after a few weeks, or am I just unlucky? Hopefully it's just a bad drive and not some weird exotic problem with the E7200 + mobo combination. I don't fancy having to setup my server a THIRD time in the next few weeks. A second time is going to be bad enough.
Dang it, I just had everything perfect the way I like it too.
One of our customers uploaded C99Shell script on my server, and he can access to another accounts, I upgraded php to 5 but he can access with this script to another accounts yet, what should I do to disable this script or other one?
For hosting irc and shells i heard that the best choice for OS is the FreeBSD..
I would like to know if there are any toturials or if someone can write one.. (or give some tips) of how can i secure a machine running FreeBSD and used for irc + shells!
For example how can i install a firewall, a rootkit etc etc..
Also what about putting users at jail? (not allowing them see other dirs except theirs) how can i do that?
Also what about dont allow users use some commands like dmesg, ping, traceroute, and also how can i make them when they do ps -aux to only see their processes (to not be able see the other processes from other users..)
I have few scripts, but hackers again upload at some way c99, and hack some SMF forums at server. Server like server they cannot hack, but user account they can. So please tell me what you advice?
A part of my sshd_config: Port 2255 Protocol 2 ListenAddress 8x.xx.xx.46 PermitRootLogin no
Recently, when I want to connect to my server using putty, I get "Connection Refused" using the above IP address and port. When I enter the above IP address (or any other IP address that is stored/set on the server) and port 22, I get "Server refused to start shell/command".
It did work before, using 8x.xx.xx.46:2255 and when I enter 8x.xx.xx.46:22 it will block. But now... not anymore.
I am using "Direct Admin" to do a "System Backup". I do see the right port and IP address in the sshd_config file.
How can I fix this? I can not login the server anymore, however I am going to the datacenter tomorrow.
OS: CentOS Installed firewall / protection: APF + BFD Control Panel: Direct Admin
I just ordered a dell server a few days ago and have noticed in addition to a free harddrive upgrade I now have an upgraded processor for the same price.
The question for me is which is better? The previous processor was the low energy 105W one which suited me fine as I'm co-locating this to a DC where they are very strict on power consumption.
Is this one going to provide a noticable performance increase over the first? Is it a major power hog?
I have Plesk 11.5 (service provider mode) on a Windows 2008 server IIS7.Most of my sites are developed in .asp and therefore i use a custom 500-100.asp error page that check s the IP of the visitor then displays either a friendly error, or if its my IP a full error of what has happened (it also emails me the error). This allows me to debug pages easily whilst developing and to keep an eye on anyone trying SQL Injection hacks on my sites (as the error and email also have session variables and IP address).I dont have root access to the server as it is a Webfusion dedicated server.I have following the Plesk documentation -
1) Switch on custom errors for the subscription 2) Look in virtual directories and navigate to error documents 3) Find the error in question (500:100) and change it to point at either a file or URL
FILE - I had the data centre add in the 500-100.asp error page in to the virtual template so that my page is available in the list of virtual files - this didn't work but that maybe because its not a static page??
URL - when i add the path it says its incorrect, if i add a fully qualified address, it accepts it but it doesn't work.give me a specific example of the URL that can be entered relative to the root as the format in the documentation isn't accepted. The last step is to restart IIS which is also an issue as i cant seem to do this from the Plesk panel..It is as if it isn't catching the 500:100 error, and only catching the general 500 error??
I have a little problem with either my server or my connection. For some darn reason I will be doing FTP uploads on small PHP files or viewing the forums on the server and then everything will start timing out. Yesterday this happened I would be able to get on the server from time to time for short amounts of time. After about 3 hours is went back to normal. Tonight, however, it did the same thing but I have no access to the server and it's been like this for about 4 hours. What could be causing this?