Re: [CentOS] Apache Security

23 Jun 2006


      Matthew T. O'Connor wrote:
...
Hello, I have a server running CentOS 4.3 with all the latest updates.
The server in question has been hacked by spammers a few times.  The
details of the hack have been basically the same every time.  I find
some directory created by the apache user account in /tmp.  The new
directory contains an html file, and a list of email addresses to spam
and a perl script that spams all those email addresses with the html file.
sounds like scripts and bad code on the web-doc-root being exploited.
consder enabling SELinux. this is the sort of thing that selinux was
meant to prevent, and does a very good job of it.
-KB
-- 
Karanbir Singh : http://www.karan.org/ : 2522219@icq

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

Re: [CentOS] Apache Security