Got hacked with SHELL c99 and r57

Discussion in 'General' started by dk.mmmm, Jul 14, 2010.

  1. dk.mmmm

    dk.mmmm Member


    My PHP have disabled many functions like:
    exec, passthru, shell_exec, system, pcntl_exec, leak, apache_child_terminate, posix_kill,posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, escapeshellcmd, escapeshellarg,show_source, ini_restore, dl, dl dl dl

    But today, one of my client got hack local again, with c99 and r57.

    I have tested, r57 can still excute dir /home/username , and cat /

    How to fix , please help.
  2. NiteWave

    NiteWave Administrator

  3. dk.mmmm

    dk.mmmm Member

  4. NiteWave

    NiteWave Administrator

  5. dk.mmmm

    dk.mmmm Member


    So, that mean, only use LiteSpeed for your own website, cant not use LiteSpeed for Bussiness Web Hosting, because Litespeed not security like Apache + mod_security.

    Too bad, now I come back to Apache because this reason.

Share This Page