[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] How to protect RFI ??

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] How to protect RFI ??
From: "Mark Sec" <mark.sec@xxxxxxxxx>
Date: Mon, 28 May 2007 04:41:42 +0200

G00d thanks,
does any1 know a tool for looking vulnerabilities "inside" of my *.php files
? or something to automated the "search" vulnerabilities?

- mark




On 26/05/07, Jamie Riden <jamie.riden@xxxxxxxxx> wrote:

On 26/05/07, Mark Sec <mark.sec@xxxxxxxxx> wrote:
>
>
> does any1 how to protect about RFI (Remote file inclusion), and what i
need
> to see over php files ?
>
> -mark

Briefly:
1. Secure your php install - turn off allow_url_fopen and
allow_url_include in php.ini
2. Make sure your PHP app is not vulnerable - an attacker shouldn't be
able to control what's included. This should protect you from local
file inclusion as well.
3. Use suhosin and/or mod_security
4. (maybe) configure your firewall to disallow outbound connections
initiated by the webserver

cheers,
Jamie

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] How to protect RFI ??
  - From: Andrew Farmer

References:
- [Full-disclosure] How to protect RFI ??
  - From: Mark Sec
- Re: [Full-disclosure] How to protect RFI ??
  - From: Jamie Riden

Prev by Date: [Full-disclosure] OpenOffice.org 2.2.0 Writer DoS vulnerability
Next by Date: Re: [Full-disclosure] How to protect RFI ??
Previous by thread: Re: [Full-disclosure] How to protect RFI ??
Next by thread: Re: [Full-disclosure] How to protect RFI ??
Index(es):
- Date
- Thread