By Date:	<-- -->
By Thread:	<-- -->

Apache Security

From: Karanbir Singh <mail-lists (at) karan.org>
Date: Thu, 22 Jun 2006 23:02:20 +0100

Matthew T. O'Connor wrote:
> Hello, I have a server running CentOS 4.3 with all the latest updates.
> The server in question has been hacked by spammers a few times.  The
> details of the hack have been basically the same every time.  I find
> some directory created by the apache user account in /tmp.  The new
> directory contains an html file, and a list of email addresses to spam
> and a perl script that spams all those email addresses with the html file.

sounds like scripts and bad code on the web-doc-root being exploited.

consder enabling SELinux. this is the sort of thing that selinux was
meant to prevent, and does a very good job of it.

-KB
-- 
Karanbir Singh : http://www.karan.org/ : 2522219 (at) icq
_______________________________________________
CentOS mailing list
CentOS (at) centos.org
http://lists.centos.org/mailman/listinfo/centos

Follow-Ups:
- Apache Security
  - From: Nick <list (at) everywhereinternet.com>
- Apache Security
  - From: "Jim Perrin" <jperrin (at) gmail.com>

References:
- Apache Security
  - From: "Matthew T. O'Connor" <matthew (at) zeut.net>

Prev by Date: Building Mail Server, Need Advice
Next by Date: OT -- BASH
Previous by thread: Apache Security
Next by thread: Apache Security
Index(es):
- Main
- Thread