Support

DraCoola · #11 03-31-2009, 06:24 PM

Quote:

Originally Posted by IrPr

Welcome dude

About mod_sec rules im using JIT and rootkit right now, but i think Tony is more familar with those rules

system or cPanel PHP, Fantastico uses the main php.ini file located /usr/local/lib/php.ini while LS uses LSPATH/lsphpx/lib/php.ini by default

PS: I strongly suggest disabling Fantastico if you can because of lots of vulnerabilities
Examples: http://www.milw0rm.com/exploits/6461 or http://www.milw0rm.com/exploits/6897

got that!
thanks

Tony · #12 03-31-2009, 06:29 PM

Quote:

Originally Posted by IrPr

Fantastico uses the main php.ini file located /usr/local/lib/php.ini while LS uses LSPATH/lsphpx/lib/php.ini by default

If the user is using cPanel and used the build matching PHP they'd use /usr/local/lib/php.ini which matches the CLI built by cPanel.

cPanel's PHP which would be used by Fantastico since the installer runs within the cPanel system would be /usr/local/cpanel/3rdparty/etc/php.ini . The cPanel PHP can be found at /usr/local/cpanel/3rdparty/bin/php and is used by anything PHP related ran within WHM or cPanel.

DraCoola · #13 03-31-2009, 06:32 PM

But... after I edit /usr/local/lib/php.ini, it always changed for the phpinfo() value on /home/user/public_html/phpinfo.php
Is there something wrong with my installation?
I am still using the old php 5.2.8 from cpanel.

IrPr · #14 03-31-2009, 06:33 PM

Quote:

Originally Posted by Tony

If the user is using cPanel and used the build matching PHP they'd use /usr/local/lib/php.ini which matches the CLI built by cPanel.

cPanel's PHP which would be used by Fantastico since the installer runs within the cPanel system would be /usr/local/cpanel/3rdparty/etc/php.ini . The cPanel PHP can be found at /usr/local/cpanel/3rdparty/bin/php and is used by anything PHP related ran within WHM or cPanel.

right, thanks for correction

i always build lsphp myself

IrPr · #15 03-31-2009, 06:35 PM

Quote:

Originally Posted by DraCoola

But... after I edit /usr/local/lib/php.ini, it always changed for the phpinfo() value on /home/user/public_html/phpinfo.php
Is there something wrong with my installation?
I am still using the old php 5.2.8 from cpanel.

ls -als /usr/local/lib/php.ini /usr/lib/php.ini /opt/lsws/lsphp5/lib/php.ini
i thinks its linked into lsphp's php.ini or vv

IrPr · #16 03-31-2009, 06:37 PM

Quote:

Originally Posted by IrPr

ls -als /usr/local/lib/php.ini /usr/lib/php.ini /opt/lsws/lsphp5/lib/php.ini
i thinks its linked to lsphp's php.ini or vv

Take a look here
http://209.85.129.132/search?q=cache...ient=firefox-a

Damn WHT hacked

DraCoola · #17 03-31-2009, 06:43 PM

Quote:

Originally Posted by Tony

If the user is using cPanel and used the build matching PHP they'd use /usr/local/lib/php.ini which matches the CLI built by cPanel.

cPanel's PHP which would be used by Fantastico since the installer runs within the cPanel system would be /usr/local/cpanel/3rdparty/etc/php.ini . The cPanel PHP can be found at /usr/local/cpanel/3rdparty/bin/php and is used by anything PHP related ran within WHM or cPanel.

I check for /usr/local/cpanel/3rdparty/etc/php.ini and found that disable_functions are totally empty there.

@IrPr :

root@xxxxx [/home]# ls -als /usr/local/lib/php.ini /usr/lib/php.ini /opt/lsws/lsphp5/lib/php.ini
/bin/ls: /opt/lsws/lsphp5/lib/php.ini: No such file or directory
0 lrwxrwxrwx 1 root root 22 Feb 15 12:07 /usr/lib/php.ini -> /usr/local/lib/php.ini
40 -rw-r--r-- 1 root root 40218 Apr 1 08:21 /usr/local/lib/php.ini

IrPr · #18 03-31-2009, 06:53 PM

Quote:

Originally Posted by DraCoola

I check for /usr/local/cpanel/3rdparty/etc/php.ini and found that disable_functions are totally empty there.

@IrPr :

root@xxxxx [/home]# ls -als /usr/local/lib/php.ini /usr/lib/php.ini /opt/lsws/lsphp5/lib/php.ini
/bin/ls: /opt/lsws/lsphp5/lib/php.ini: No such file or directory
0 lrwxrwxrwx 1 root root 22 Feb 15 12:07 /usr/lib/php.ini -> /usr/local/lib/php.ini
40 -rw-r--r-- 1 root root 40218 Apr 1 08:21 /usr/local/lib/php.ini

Using lsws? whats your loaded php.ini path in phpinfo() ?

DraCoola · #19 03-31-2009, 07:12 PM

Quote:

Originally Posted by IrPr

Using lsws? whats your loaded php.ini path in phpinfo() ?

/usr/local/lib/php.ini

But it is super worked now after running /scripts/makecpphp
Thank you for your all of disable_functions values

DraCoola · #20 03-31-2009, 07:17 PM

But still curious on how to enable the pure phpsuexec to this LS-Cpanel.
Because I think the security of LS will totally null if any user still can walk around to other users teritories.

It is just as the same as php-DSO (nobody), which username means nothing to php security.