Got hacked with SHELL c99 and r57

Discussion in 'General' started by dk.mmmm, Jul 14, 2010.

  1. dk.mmmm

    dk.mmmm New Member

    Hello,

    My PHP have disabled many functions like:
    exec, passthru, shell_exec, system, pcntl_exec, leak, apache_child_terminate, posix_kill,posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, escapeshellcmd, escapeshellarg,show_source, ini_restore, dl, dl dl dl

    But today, one of my client got hack local again, with c99 and r57.

    I have tested, r57 can still excute dir /home/username , and cat /

    How to fix , please help.
  2. NiteWave

    NiteWave Administrator

  3. dk.mmmm

    dk.mmmm New Member

  4. NiteWave

    NiteWave Administrator

  5. dk.mmmm

    dk.mmmm New Member

    Nevermind.

    So, that mean, only use LiteSpeed for your own website, cant not use LiteSpeed for Bussiness Web Hosting, because Litespeed not security like Apache + mod_security.

    Too bad, now I come back to Apache because this reason.

Share This Page