Prevent Httpd/php Core Dumping
Feb 16, 2007
for the 2nd time now we've had php become corrupt or something and core dump all over user dirs filling them up with useless garbage ...
We did check the core dumps (atleast a couple) and they were just showing that php was seg faulting which a php recompile took care off (most likely a corrupt php binary)
anyway, what I'd like to know is can anyone recommend a reliable/safe way of disabling php or http from dumping core files and perhaps instead use a different method of notifying the admin of impending or current issues with either software eg. when they seg fault send an email to admin rather than dump a core in user's space
We're running cpanel servers, php4, rhel and phpsuexec is on (cgi)
View 4 Replies
ADVERTISEMENT
Jan 12, 2008
Can you restart the httpd to get the server online again while you are under an DDoS attack?
The reason for asking is that I was told that when restarting the httpd it should start to work again instantly, and so it seems.
But why? doesnt the attack "continue" after the restart?
View 14 Replies
View Related
Jan 22, 2009
I have been a 1&1 customer for many years now. I have always used the shared hosting package and for the most part have few complaints. Yesterday afternoon it would appear my hosting server went offline and as of this afternoon it is still offline. I have spoken with their tech support twice and both times they acknowledged a problem, insisted it was being worked on and told me they would email me when it was resolved. I find it truly disappointing that a company the size of 1&1 can not resolve a dead server in a reasonable amount of time.
While I do not use my web sites for any sort of ecommerce I have higher expectations than this. I have made the decision that it is time to move on. I would like some recommendations on alternatives. I would prefer to have a linux based hosting service that will allow me to manager multiple domains from a single control panel.
Additionally, I need to be able to use my own custom php.ini files and would really like to have shell access.
View 14 Replies
View Related
Jul 12, 2008
I've been pretty happy with 1and1 for years, until I faced their inability to solve critical failures on their side quickly.
I was always able to solve my problems on the server remotely by using their Recovery Tool and Serial Console they provide through the Admin Panel. Whatever happens, you switch to recovery mode, log in via the serial link, mount your disks and do your job. This was really cool and basically I never needed their tech. support.
Until something terrible happened to the hardware.
A month ago my server went down. It took me 3 days, many calls and many hours of waiting on hold until they figured out that one of their switches was broken. They replaced it, as they said, and all came back online again.
I somehow forgot the fact that during those 3 days when the server lost communication I couldn't log in via the serial link either. Now that turned out to be a separate problem.
Something happened on the server 5 days ago, the root partition got filled, the server gradually went to an unstable state, until 3 days ago it stopped responding completely. First thing I tried was to restart it using 1and1's Recovery Tool - that didn't work, then I tried to connect via the serial link - and that didn't work either.
This clearly looked like a hardware problem again. What can I say. 5 days of meaningless conversations with their customer support people in Philippines and failed attempts to forward my call to their server department in the US. Yesterday I even heard "we are aware of the problem, we are working on it now", but no change since then.
Emails always unasnwered (server247@1and1.com), although their customer support suggested me twice to write an email, as they were unable to reach the server department themselves. They did apologize, and I'm grateful for that, but I need the problem solved.
Not to mention, 2/3 of my paying customers are gone now. So all I need is to get my server back online to pack my stuff and dump them forever.
What would you suggest as a decent alternative?
View 10 Replies
View Related
Apr 22, 2008
Shall I chose the xeon quad core 2.4 GHZ or the dual core 2.66 GHZ for an adserver's database?
View 3 Replies
View Related
Nov 27, 2007
Which is the better performer?
(1x) Quad Core Intel Xeon X3220 2.40GHz 2x4M Cache
OR
(2x) Dual Core AMD Opteron 2216 2.4GHz 2X1MB Cache 1Ghz HyperTransport
This is for a web/application server running, Windows 2003 Server Professional, IIS, MySQL, MSSQL 2005 Express, Plesk 8.5. The price is about the same.
View 14 Replies
View Related
Feb 3, 2008
quad core processor vs Intel Xeon 3060 Dual Core Conroe Processor which is better any why?
View 2 Replies
View Related
Oct 30, 2008
can someone give a comparison betwen this two
Intel Quad Core Xeon X3210 vs Dual-Core 3040 Xeon
View 7 Replies
View Related
Jan 23, 2008
Which one you suggest for running database server and VPS's?
Dual Xeon3ghz 1mb dual core vs Quadcore 6600 2.4ghzx4 core 8mb.
View 4 Replies
View Related
Jun 12, 2008
We are hosting our software system which do calculation and file manipulation.
Now we have Intel Core 2 Duo E6750 and would like to get Intel Core 2 Quad Q6600 to increase our system performance.
Also we have other choice, get Intel Xeon E5405 Harpertown 2.0GHz
to replace two above.
I think it is better to have one server box because one box easy to manage than two. Also Harpertown is much faster than these two together.
What is your opinion?
View 11 Replies
View Related
Jun 3, 2008
3i want to buy new erver and i have choice of the fallowing
AMD X4 Quad Core 9500
RAM : 4096 MB
Disk Drives: 2 X 250 GB SATA
and
Intel Quad Core Q9300 4x2.5 GHz
RAM : 2048 MB
Disk Drives: 2 X 250 GB SATA
both in the same price . so i need some advice for who are the best performance and the ideal for webhosting service.
View 11 Replies
View Related
Jul 25, 2008
we are planning to have 1 more dedicated server and also planning to collocate.
Core 2 Quad 6700 [ OR ] Core 2 Quad Q9450 | Which is better
View 5 Replies
View Related
Feb 6, 2007
i am using seperate server for sql .But my httpd server failed many time when i checked maximum number of httpd connection then my sql server using too many connection what is the reason of this problem . Is my sql server using as a slave in a ddos attack or sql server need http connection?
View 2 Replies
View Related
Sep 1, 2007
I trying:
Code:
[root@serwer /]# httpd restart
/usr/sbin/httpd restart: httpd not running, trying to start
/usr/sbin/httpd restart: httpd could not be started
Code:
[root@serwer /]# /etc/rc.d/init.d/httpd configtest
Syntax OK
Help
View 7 Replies
View Related
Jun 9, 2008
I cant decide between
Dual Processor Single Core
Dual Processor Single Core Xeon - 3.00GHz (Irwindale)
Or
Single Processor - Quad Core?
Single Processor Quad Core Xeon 3220 - 2.40GHz (Kentsfield)
My site needs "raw" processing power due to the applications it runs. ram (over 2 gb) and hdd are not that important to me.
could someone point me in the right direction.
View 3 Replies
View Related
May 12, 2008
Which is a better option? Both priced same, I know with the Xeon 5310 the possibility of upgrading to dual cpu's.
Quote:
Single Processor Quad Core Xeon 3220 - 2.40GHz (Kentsfield) - 2 x 4MB cache
Single Processor Quad Core Xeon 5310 - 1.60GHz (Clovertown) - 1 x 8MB cache
Which would give higher performance in a shared web hosting environment?
View 12 Replies
View Related
Nov 7, 2007
I am going to buy a new server and I am unsure of which route to take.
Basically the cost is identical for a Dell server with:
1 AMD Operton Dual Core 2.4Ghz
OR
2 AMD Operton Dual Core 2.0Ghz
What is the felling? Does the 4 cores out weight the extra 400 mhz per processor, but only having 2 cores?
The server will be running:
Windows 2003 Standard x32
Plesk 8.2
IIS 6.0 [ Application Pools Setup ]
MySQL
Microsft SQL Express 2005 [ONLY CAN USE 1 CPU/CORE]
MailEnable
Can my applications even handle/utilize four cores?
View 6 Replies
View Related
May 19, 2009
from the title, which one is better for a server?
View 14 Replies
View Related
Jul 4, 2009
Does anyone know anyway that "rm -rf /" can be disabled? OR any selinux rule or something to prevent this?
Or if I wanted to prevent a certain directory from being deleted like backups but something unlike chattr that someone can figure out quickly.
Im sure LOTS of people would like to know about this. Ive searched around and only somewhat useful thing I have found is an rm wrapper that sends everything to a trash file in the root of the mount point.
View 14 Replies
View Related
May 28, 2008
Can anyone share tips how to prevent DNS flood on a cPanel and Directadmin server platform on Centos?
View 7 Replies
View Related
Jun 1, 2008
I'm not that techy I'd like to ask why this person downloaded the file below before uploading some phishing webpages on my account ? I've changed my password numerious times from different computers and even from mobile phone just to check if the person can still get in. But again it is no use the person were able to upload phishing pages.
logs:
May 25 21:50:42 server100 pure-ftpd: (weblogin100@62.56.133.36) [NOTICE] /home/weblogin100//.htpasswds/update/Login.php downloaded (21251 bytes, 755.78KB/sec)
Right now I deleted all other scripts on the account and remain some htmls. Folder were also set to 644 no 777, while waiting if the person can still upload his phishing pages please help me why he downloaded the file above. I've check the file on my account and I cannot see Login.php. By the way I have a root login and only two accounts were a constant phishing victims.
View 1 Replies
View Related
Feb 21, 2007
I am giving few tips on securing your server against hack attempts. You must check these inspite of other securities like firewall, rootkits detectors etc.
1. Most Important, do not disable safe_mode under php.ini. If any customer asks to disable it, turn it off on his account only, not on whole server.
As most of the time attack is done using shellc99 (phpshell) script. In case safe_mode is off on server and there are public dirs with 777 permission, he can easily hack through.
2. Compile apache with safe mode as well.
3. In cpanel under tweek settings, turn on base_dir, if someone requests to turn off, turn it off on his/her account only. As using phpshell one can easily move to main server dirs like /etc, /home.
4. Do not allow Anonymous Ftp on your server. You can turn it off from ftp config under WHM Service Configuration. If its allowed, one can easily bind port using nc tool with your server and gain root access. Always keep it disabled.
5. Make sure /tmp is secured. You can easily do that by running this command /scripts/securetmp using ssh. But do make sure, /tmp is secured. Else one can upload some kind of perl script in /tmp dir and can deface or damage all data on the few/all accounts on your server.
keeping your server secure from hack attempts.
View 7 Replies
View Related
Oct 28, 2007
Does anyone know how to prevent some shell, php script change file name from file.php to file.jpg or file.gif and upload to server and run it to attack server?
View 14 Replies
View Related
Sep 11, 2007
from 2 days ago until now my server be ddos and i stay in my computer and block ip but it is not finish is a program to do block ip automatic?
View 2 Replies
View Related
Sep 13, 2007
We have been using our L2 switches functionality to only allow IPs that are assigned to a particular server to be accessed for sometime. However, the latest version of this particular switch no longer includes this feature. Moreoever, it is quite a labor intensive task which is not good for "budget" servers.
I am considering moving the rules to the main router, but am afraid of the scalability of this. Will it hold up with a few 1000 servers?
How are other hosties going about this? I have heard that some just don't bother at all, which leaves their clients open to having their IPs duplicated by others on the same subnet. This can't be good....
View 1 Replies
View Related
Sep 21, 2006
i need any thing to prevent mass download
my server is cost a huge bandwidht monthly . because mass downloading?
View 1 Replies
View Related
May 24, 2008
I need to know so idea, how to prevent iframe virus injection into the server,also is there is any mod which help in protection for iframe virus.
View 14 Replies
View Related
Jun 13, 2009
i have my own box for my forum .. now i shared my box with friend's , but in reall they a freak friend's , just to be in safe brother, am looking to know what function i can disable in php.ini or any problem/tool to prevent anybody / attacker * nobody* permission to move in the server via his shell script..
as we know some attacker's use them own php-shell to hack site's * shared hosting *, so they can move to any account after they know the user account name * /etc/passwd * .. so as i say before is there any good functions to prevent these attacker to move in the server? so i can disable it .. or install any good tool * else modsecurity * in the system to prevent them *nobody* of that?
View 7 Replies
View Related
Jul 30, 2009
I try to use mod_security to prevent some script in some files,
imagine I want to block all scripts includes "test" in the body
so if code of script.php is:
HTML Code:
<html>
<p>test</p>
</html>
and someone run script.php , I want block running and show 406 error
now can you tell me how can I write this rule in mod_security 2 with apache 2?
I use SecRule RESPONSE_BODY "test" but its now working ...
View 8 Replies
View Related
Jan 12, 2008
I have a cPanel/Linux server, runing apache as a webserver.
i want to know how can i prevent perl/cgi files from working on all virtual hosts on both apache2/apache1.3!
View 14 Replies
View Related
Aug 4, 2008
My site was recently under a DDoS attack and was down for a few days, the attack came from Russia i believe.
The people who did it asked for $800, but of course i didnt pay. My hosting company did the best they could in order to stop the attack but it still lasted a few days and badly hurt my rankings.
I moved my site to a dedicated server, but i dont know what kind of software/hardware i need to install on it in order to prevent more future attacks, the hosting company suggested a few things but i dont know if they are just trying to get more money out of me.
View 3 Replies
View Related
