Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: How do they do that |
|
| Author |
|
al0000
Joined: 29 Jan 2007
Posts: 24
|
 Posted: Mon 24 Sep '07 4:10 Post subject: How do they do that |
 |
|
Hello,
I have been watching my apache log files lately, and i noticed scripts that trying to hack my server, for instance trying to locate an root/phpmyadmin directory.
I have 16 IP on my server. Two completely different subnets.
About 5 websites on the server. 3 of them run on the second subnet.
Is there a way to see what websites are running on a apache installation? Do do these scripts locate the websites?
If there is a way, what can i do about it? |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7298
Location: Germany, Next to Hamburg
|
| Posted: Mon 24 Sep '07 14:00 Post subject: |
|
|
You can use open_basedir (php) for every single vhost.
e.g.
php_admin_value open_basedir /path/to/webroot
Also you can disallow functions (php.ini) like exec
disable_functions =
With pearl I don't know how to secure that.
Secondly you should protect you phpmyadmin with allow, deny and allow only from your IP's you want. |
|
| Back to top |
|
|
|
|
|
|
