Security :: Allow Apache To Send SIGHUP To Root Process?
Feb 18, 2010
I have been tasked with sending a kill -s SIGHUP (a reload) to a Daemon process owned by root running on a centOS 5.4 machine.
Obviously, Apache cannot normally do this, so I'm going to have to use the sudoers file.
My problem is, how do I allow the Apache user to only run the kill command? nothing else.
in testing, I've gotten Apache to basically run every command prefixed with sudo and no password prompting. But I want the added security to only run the kill command without the password being prompted everything else should prompt for a password.
I'm trying to understand the sudoers file, and i must say, its non-trivial.
is there a simple 1 line I can put in the sudoers file like
PHP Code:
apache ALL=(ALL) NOPASSWD: /bin/kill
View 6 Replies
ADVERTISEMENT
Oct 7, 2010
I have a server with a couple of sites on it. Some of them have a webform where people can send them emails that they are interested in their work etc. though the "To:" and "From:" adress can't be change by the enduser, you can only enter text and press send. However it seems that someone (not on the server) has found a hole/exploit to use those webforms to send mails to who ever he wants.. I have the webserver setup with ssmtp (simple smtp) and it just forwards the mail sent from the server to my mail-server and there on it sends it out on the internet. If I check my log on the mail-server I can see the whole smtp session, where it's comming from and where it's going etc. I see that it comes from my webserver and over there I only have these log entries:
Oct 6 22:04:47 ettan2 sSMTP[1771]: Sent mail for itaumail@itau.com.br (221 2.0.0 Bye) uid=204 username=torget outbytes=3290
There are loads of those log entries, mostly at after office-hours between 17:00 and 7:00 I have scanned through all the Apache logs and can't find Anything that point to the e-mail addresses used or something like that. The reason I found this out was because he tries to send to a host that doesn't allow connection on port 25 so all the mails got stuck in the queue, over 1000 atm.. I'm using Apache 2.2 and Postfix 2.6 on a Debian Lenny install. What can I do to find out how he's doing this and close the "exploit"? Who would you recommend to setup the mail() thing in PHP for most security?
View 6 Replies
View Related
May 18, 2010
I would like to set process in background in such a way that it will be running.For example, I started vim editor and pressed CTRL+Z command to put the process in background. But this process is in stopped status, which I can check with 'jobs' command.Is there any way that stopped job can be put into running background process?
View 1 Replies
View Related
Jun 9, 2011
I'm building a Linux From Scratch system and partially automating it. I will likely want to do it again, and I would like to try to almost completely automate it.
My current approach is a script that takes an input file and sequentially runs each line in a new instance of bash. If one fails, it gives me the number of the step that failed so that I can use the "--step" option to resume after I fixed the issue.
This has some problems:
A varible created on one line will not be accessible on the next line. This is because each line is run in a separate shell (the reason for this is so that the commands in the input file and the script's internal variables can't interfere). You can't switch users or use chroot, again because each line is run in a separate shell.
What would be nice is to be able to start a bash process in the background and send commands to its stdin. I guess that a named pipe would work, but the named pipe will be gone after a chroot. Is there a way to do it without relying on the filesystem? Also, how do I know if the command failed?
View 14 Replies
View Related
Jun 22, 2010
Apache2 on Ubuntu 10.04 no longer parses PHP files. I've done a complete uninstall and reinstall of both Apache and PHP, but no joy.In the Apache2 log, I get this message: /usr/lib/php5/20090626+lfs/xdebug.so: cannot open shared object fileI've done the obvious and checked that the library is there and it is. It has permissions of 644 (rw-r--r--).Does anyone know what I'm missing here?
View 9 Replies
View Related
Nov 24, 2009
Can Apache send error messages (crit, warn & such) by email each time they get logged?
View 2 Replies
View Related
May 17, 2010
I am using ubuntu 8.10 server for running my sugar crm. because of some reason I can see multiple instances of apache2 running when I issue top command. can I further know about the problem that is occuring.
I know this is more of sugarcrm or php or apache problem but I would like to track the problem.
View 3 Replies
View Related
Jan 20, 2011
want to run VirtualBox with root permissions. Trouble is that only when run as root i can access attached USB devices inside of a virtual machine, otherwise, these a greyed out).Now running VirtualBox as a root user also changes the configuration folders, making all my virtual machines already defined disappear. I also don't want to copy all to the root configuration folders. Is there a way to give the VirtualBox root permissions but without actually running the application as a root user. Is it possible to do without changing the permissions of the non-root user, i.e. i don't want my user to have all root permissions, due to security considerations.
View 1 Replies
View Related
Apr 12, 2010
I run ProFTPd with TLS authentication on my Debian Lenny server. My problem is that despite of the fact that my users connect chrooted, one of my friends had root privileges after logging in form a Macintosh and could browse the root directory, too.
View 1 Replies
View Related
May 11, 2011
im looking for a program that lets me monitor server remote a check if apache is running and if its not send out a mail pretty much something like the Big Brother projeckt was before they went comercial i found a few projekts but most havent been updated for years anyone got a clue on any active projekt that does this?
View 1 Replies
View Related
Jun 9, 2010
I'm trying to send files from a Unix server using http/curl to a Linux webserver running Apache. I get the following PUT error message when and the file does not send:
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL
View 2 Replies
View Related
Oct 28, 2009
Is It possible to change a process running in root-user to non-root-user by setting suid / uid / euid / gid etc... I so please instruct how, when and wat to set in order to change a process running in root-user to non-root user
View 4 Replies
View Related
Nov 11, 2009
I have made out a little software as to talk with my friends through network . there are two parts : one is listening to receive messages ,the other will send messages. but the firewall is bothering .so I want to know if I can make my software listen to port 80 while apache is also running .
View 11 Replies
View Related
Aug 13, 2011
I have this problem for a month now. Some apache process that appears rather slowly using 100% cpu for each core. Today I watch some logs in apache2, namely other_vhosts_access.log and discover this
server:8181 127.0.0.1 - - [13/Aug/2011:12:34:52 +0200] "OPTIONS * HTTP/1.0" 200 136 "-" "Apache (internal dummy connection)"
On 8181 I have google sitemap generator running but I have it for over a year and it never make any problems.
View 1 Replies
View Related
Apr 21, 2010
I am running Montavista distribution. I have an Apache server running in my machine. Now I want to know how many clients are connected to the Apache server and what are the process ids for those sessions. What is the command to do that?
View 5 Replies
View Related
Jun 8, 2011
Fedora 14. I have Apache HTTP Server installed and running fine. I am interested in doing some java servlet pages. Am I correct that in addition to the above I need to install another server - for example Tomcat - that knows how to process java servlets? I see that yum has tomcat. And that Tomcat is not an add on to the HTTP Server, but an alternative to it? i.e I start one or the other?
View 2 Replies
View Related
Jul 6, 2010
Is there a way to configure the at command to send to someone other than root?
View 1 Replies
View Related
Dec 24, 2010
i know messages like "the system is going down for reboot now" get sent, and even show up in kde when they're sent. can this be done from a command line?
View 15 Replies
View Related
Feb 6, 2010
We are trying to define an appliance based on Suse for an application server and Web server Apache, so we would like to know configuration best practices for network and security, is there any paper/doc about best practices?
View 3 Replies
View Related
Mar 25, 2010
Having read on the forums about some of the dangers of running Wireshark as root, I would like to know if anyone can suggest some alternative packet sniffers/network analyzers which will offer similar results but without the security issues. I am using Karmic Koala on a Fujitsu Siemens laptop with wireless router (firewall enabled)
View 7 Replies
View Related
Sep 8, 2010
Whenever I login as root, an e-mail with the subject "Security information" is sent outwhere the e-mail address for this message is configured? I need to change it (or perhaps disable it).
View 9 Replies
View Related
Oct 20, 2010
I found this on Bee's website. For more info on this exploit there are links there:[URl]..All you have to do in Fedora 13 is enter the following lines in a shell as normal user:
[Code]...
I don't think this can be considered solely an "upstream" problem, because I first tried it in Arch using the same version of glibc, and the final command causes both gnome-terminal and xterm windows to disappear.
View 14 Replies
View Related
Jun 1, 2010
I've been having some trouble with the notifications on 10.04.Networking and volume popups are visible, but messages from Banshee or empathy aren't showing.
I tried the command notify-send in the terminal, but it showed nothing, unless when doing it as root.
fix or a setting to tweak in order to get full notifications back?
View 2 Replies
View Related
Mar 25, 2010
The system crontab (/etc/crontab) uses the same format, except that the username for the command is specified after the time and date fields and before the command.
[code]...
Every hour, I get an e-mail complaining about the first line of the crontab:
[code]...
I get the same complaint from the other entries: It looks to me as if cron, or anacron, is trying to execute the user (root) as a command. Predictably, the shell doesn't like it, so barfs and triggers an e-mail about it. Why is this not doing what the man page says it should do? The 2nd problem I believe is related to exim, not cron. The e-mails I'm getting above are being bounced from my ISP because they are directed to root@myisp.com, rather than my regular e-mail address. When the message bounces, it bounces to my regular e-mail address. In /etc/aliases, I have root: [URL]... and in etc/email-addresses I have root: [URL]... Adding the entry to /etc/email-addresses allowed the bounce to find me because the sender's address is [URL]... but how can I get cron to send these messages to me in the first place, instead of root?
View 11 Replies
View Related
Dec 29, 2010
I scan a document with root pressing the scanner button. I would like to send an email using my gmail account. OK. nothing difficult with that... mbsmtp + mutt for sending trhough the sh script.
1-root is to be avoided at max to do some internet duties, due to security. Apt-get is good, but ok surfing or email sending shall be avoided for higher security.
2- sudo or su running mutt through this way, ok, using an existing user. OK, possible and simple, but not comfortable since you have to use an account of an user existing (create a new user for scanner and email?? - no, come on, we have linux and can maybe find a solution)
how to send an Email from root console using an non created USER?
View 5 Replies
View Related
Oct 16, 2009
I'm behind a modem router with firewall and SElinux enabled by default - but checking my mail this morning I noticed several ' delivery failures ' ( allegedly ) from hotmail referring to mail I hadn't sent. When I checked the spam folder for the on-line side of my mail account there were more failure notices. Two points that may be relevant, one is the recent Hotmail exploit, the other is that this only occurred with the address I use for railway matters, and some people cc to everybody, so it's odds on that address is on a good few computers. On one occassion when I checked my spam folder on-line I found spam which claimed to be from myself, so I know the ' send ' address can be spoofed, is this the explanation, or is it a new kind of attack linked to the Hotmail exploit?
View 13 Replies
View Related
May 19, 2009
I'm looking for a solution for sendmail to limit the number of emails send per miniute per IP. For example all my local computer user with ip 192.x.x.x need to able to send 10 emails/minite (emails, not connections!. The rest of the world can send for example 200 emails/minute to the mailserver. If the amount of emails per minute is exceeded, sendmail needs to block receiving emails from the spesific IP. I want to do this to stop spaming from my local network. Is it possible?
View 1 Replies
View Related
Aug 3, 2010
Is there a way to send syslog messages through SNMP? I'm not finding much info online around this. A co-worker said it was easy to do. RHEL5.5
View 1 Replies
View Related
May 6, 2010
I have a sendmail server in my compani and I have a aliase that send one email for every employee but there are people that is not employee sending mail for this aliase and I need to avoid it some one have to do that.
View 10 Replies
View Related
Jul 26, 2011
I tried to send mail from my debian system commandline as root user But i did not get the mail in the destination email inbox No errors was shown
View 1 Replies
View Related
