Skip to content

Category Archives: Security

setuid for programs

23-Nov-09

setuid program are programs, which runs as owner of the program, rather than the user executing the program. root@laptop:~# ls -l `which su` -rwsr-xr-x 1 root root 31012 2009-04-04 11:19 /bin/su root@laptop:~# ls -l `which sudo` -rwsr-xr-x 1 root root 115136 2009-02-17 08:52 /usr/bin/sudo root@laptop:~#

Also filed in | Tagged , , | Comments Off

PHP Security

01-Nov-09

PHP Security PHP as a module or as a CGI Using PHP as a mod-ule is suitable for systems that are dedicated to a single purpose or for sites run by trusted groups of administrators and developers. Using PHP as a CGI (possibly with an execution wrapper) is a better option when users cannot be [...]

Also filed in | Tagged , , | Comments (0) »

php security resources

01-Nov-09

Security section of the PHP manual (http://www.php.net/manual/en/security.php) PHP Security Consortium (http://www.phpsec.org)

Also filed in | | Comments (0) »

mail alert on root login

31-Oct-09

put in root user .bashrc file echo ‘ALERT- Root Access on:’ `date` `who` | mail -s “Alert: Root Access from `who | cut -d”(” -f2 | cut -d”)” -f1`” admin@serversignature.com or echo ‘ALERT- Root Access on:’ `date` `who` | mail -s “Alert: Root Access from `who –i|grep root`” admin@serversignature.com

Also filed in | Tagged , , | Comments (0) »