Our client-accounts were recently injected with the following script and since there are too many files that were injected (only index.php and index.html) how this script can be traced with a search command and removed in all files found.
[Code].....
I need to remove virus/injections from hindered of files from my web server, infected due to virus/injection.
i am working on simple idea.
1. script ask pattern as input from user OR pattern as input file.
2. script ask the specific path as input OR or list of infected file to be provided to remove pattern from path/list files.
3. find awk sed to remove pattern.
is there any better way ?
I can write bash script.
I am facing problem on my Linux server, those runing php sites, most of the time hacker upload file in my website and take the control, and hack the sites, shoot the thousands of mail etc
View 7 Replies View RelatedI'm trying to implement this method to block php injection attack using fail2ban: here it is, however I'm not sure it applies to Ubuntu. You see, there's this filter that must be added to the fail2ban jail file:
HTML Code:
[php-url-fopen]
enabled = true
port = http,https
filter = php-url-fopen
[Code]....
currently I'm fiddling around with mod_security for apache2 configurations on CentOS boxes, right now in a test environment first (i.e. separate non production box).CentOS includes the mod_security "Core Rule Set" by Breach Security Inc, the devs behind that module.So far all's running mostly, logs/auditlogs etc.For simple testing, I made a small php form as following:
Code:
<?php
$link = mysql_connect("localhost",$user,$pass); //un/pw obfuscated for forum post
[code]...
I want to do some pen-testing using aircrack-ng on my local network and currently the only wireless adapter I have is the WNA 1100 netgear adapter. I am using the ath9k_htc driver.
View 7 Replies View RelatedHow can I remove this string from all files. I am not sure how it did get there
PHP Code:
<?php /**/eval(base64_decode('')); ?>
I tried this but It did not work
PHP Code:
find . -iname *.php* -exec sed -i 's/<?php /**/eval(base64_decode('')); ?> //g' {} ;
A Javascript has crept into all my hmtl, php files in my shared hosting account. I have SSH access.How can I use sed to remove that line from all files in a directory recursively ?sed doesnt change the original file.And I need to specify *.php and *.html
View 4 Replies View RelatedI've been playing around with sed but can't find a way to remove the <br> html tag and replace it with a newline. Sed isn't truly needed awk or other suggestions could be good.
View 3 Replies View RelatedI need a shell script which will search and remove a javascript from all htm, html and php file.
Code:
<script type="text/javascript"> if (navigator.cookieEnabled) {var user = getCookie("seostop");if (user !=1){winchristop();setCookie("seostop", "1", 7,
[code]....
I want to remove the index.html file alone in the every directory via bash script, for example i have 5 directories in the path /var/www/vhost
anish
kumar
linux
question
friend
each directories have index.html file now i want to replace the index.html file alone from the other directory /var/tmp/vhosbak
anish
kumar
linux
question
friend
How we can do this using script?
I recently upgraded from FC12 to FC14 due to errors using yum and rpm. I keep running into mirror sites with RPM files that don't install. These site have what appear to be valid RPM files, but if I use wget to retrieve the file and run "file" on it, it turns out to be an HTML file. I understand the fact that if a file is corrupted, it won't install, but I can open these "RPM" files using Mozilla after changing the extension from RPM to HTML. When I open the new HTML file, I'm prompted by the browser to open or save the RPM file. If I save the RPM file pointed to by the HTML file, I can download and install it using rpm -ivvh unless a dependency check fails. how does anyone install using yum if the package is an HTML file with an RPM extension. Here is a link as an example:
[URL]
If I use wget on this file and then run "file" on it, here is the output:
file openoffice.org-calc-core-3.3.0-20.2.fc14.i686.rpm
openoffice.org-calc-core-3.3.0-20.2.fc14.i686.rpm: HTML document text
If I change the extension of this file to HTML and open it with my browser, I am prompted to download the RPM file which turns out to be a true RPM v3.0 file. Is anyone else having this problem or can anyone point me in the right direction to download the correct RPM file. I am running behind a proxy server and have installed cntlm, configured wgetrc, yum.conf and .curlrc to use the proxy server. I am able to download and install most of the simpler applications where the dependencies are either installed or non required.
If I leave the computer running for a few minutes without doing anything on it, this screen appears demanding that I enter my password, otherwise I can't get back to Fedora. I understand the necessity for this security feature in a work environment, but I'm just a home user and this security screen is just a nagging problem I don't know how to get rid of.
View 1 Replies View RelatedI'm trying to set up some basic websites on an Apache 2 server running on my Linux box. At the moment, I have some really basic html files that I want to load into the /var/www directory. However, for whatever reason, I cannot save my html files. First, I thought it was because I didn't have permission on my account, so I switched to localadmin (i don't know if all Linux distros come with a localadmin account, but i know localadmin has "higher" permissions than, but less that root, of course). Even as localadmin, I could not save my html files!
View 2 Replies View RelatedI just downloaded libgtk2.0-doc at the gtkmm docs to help me with some programming. I've found where the libgtk2.0 documents are (/usr/share/gtk-doc/html) and I'm not for sure where the gtkmm docs are.
My question is: what is an easy way to view all of these HTML files? I know on Ruby you can run gem-server and you can see all of your RDocs from localhost on your browser. Is there an equivalent to that on Ubuntu for gtk-doc?
I am running Ubuntu 10.10 64 bit to do testing for a web site. I have successfully added a .htaccess file to the production site to process .html files as PHP files, but cannot get my localhost to process the files the same way.
Addition to apache2.config:
HTML Code:
<Directory "/home/*/public_html/*">
AllowOverride All
Order Deny,Allow
[Code].....
I created a local user acount and tested FTP. This allows me to post files to this directory using filezilla. I then created a webftpaccount and set the home directory to /var/www/html. Here are the permission to this directory using ls -l drwxrwsr-x 6 webftpaccount webftpaccount 4096 Nov 23 10:32 htmlhere are the permission on the sub directories
drwxrwsr-x 2 webftpaccount ftp 4096 Nov 14 07:37 myfinanceguard
drwxrwsr-x 2 webftpaccount root 4096 Nov 14 07:37 mylawguard
drwxrwsr-x 2 webftpaccount root 4096 Nov 14 07:36 xpiinc
I can log into the webftpaccount using filezilla client and it lists all the directories.It will not allow me to write a file into the html directory or any of the sub directories.Can someone help me set appropriate permissions on these directories so that I can get this working? I need to get FTP working so I set up dreamwaever FTP tlich and maintain sites.
why Apache is not parsing php code inside html files in LAMP? Whereas the same is working fine in WAMP..
View 6 Replies View Relatedi am having a very weird problem with one of my ubuntu shared maps (/home/marc/shared).I am using VMware. Windows 7 host. Ubuntu 9.10 Guest.By right clicking the shared folder (/home/marc/shared) and selecting "Sharing options" i have installed the samba software needed. The installation went fine and samba seems all good.The folder should have read write access.When using windows 7 to browse the network the shared ubuntu folder appears nicely. I use my root credentials to login wich works nicely too.
Now the following strange thing happens:When i create a file e.g. test.php, i can edit it delete it. Actually i can do whatever i want.When i create a file e.g. test.html (mind the .html extension), for some reason i can read it, delete it, but not edit it! Windows gives me somekind of message like "Please check whether if this file is opened by another program".How on earth is this possible? I never opened or used the .html file in another application so i guess it has something to do with write access credentials. Which is weird since i am able to delete the file?
I try to link two page from different folder and directory1. I want to link [URL]
View 9 Replies View RelatedI'm a frequent user of grep. I know that I can recursively search a directory using the -r flag:
Code:
// will recursively search all files
grep -r 'some string' *
However, if I want to limit my search to PHP files, the -r flag is suddenly useless:
Code:
// for some reason, this only searches the PHP files in the current dir
grep -r 'some string' *.php
Any good way to recursively search a directory and its subdirs for a string but ONLY look at PHP or HTML files (and possibly TXT files too) ? I'm really hoping for a nice, short command that doesn't involve using an exclude file and which isn't really painful to type. I do this kind of search very frequently and have resorted to either searching EVERY file which is really slow (TAR and ZIP files really slow it down) OR typing repeated commands to search *.php, */*.php, etc.
I want to make some changes to the SWAT browser interface, does anyone know where the html files reside? I am using Ubuntu hardy
View 1 Replies View RelatedI want to change some HTML in my files (80+ so I prefer not to do this by hand). I got a script to replace a string in files, however the HTML I want to replace contains an enter (and tab of 4 spaces) (explanation below) Does someone know how I could update my HTML by using a function in Linux?
I also found sed but don't know how to use it with the enter (linenumbers will not work because they variate)...
[Code].....
I install a nautilus plug-in which in turn installed the elinks browser and now all of my .html files are opening in elinks instead of firefox so how do I get .htm/.html and other web type files to open in firefox instead of elinks.
I also tried removing elinks from my system but then the files just open in gedit so again how do I associate .html (and other web files) with firefox.
BTW firefox is already set as my default browser in System > Prefs > Prefered Applications > Web Browser
I seem to be unable to use the html
Code:
include virtual="test.txt" I have tried following the advice in this thread http://ubuntuforums.org/showthread.php?t=1510098 but it makes no difference. The file is there, but the line is delivered to the browser as-is. Using Lucid and a new install of apache 2.2 from the repository.
I have a website that has a massive list of royalty free stock photos and I want to download all of them. I have bought a membership for [URL] so I am able to download as much as I want from them for the next month.
Instead of going page by page and manually downloading each set of stock photos manually, I would like to automate this process. Here's my idea:
1. Download the website with the links to hotfile [URL]
2. Use grep to retrieve all the links to [URL]
3. Feed the links I recieve from grep into wget and download the works of them.
The problem I'm getting is when I use grep, It retrieves the entire line of html code where "hotfile.com" is shown. So here is an example of one link I receive in the output:
Quote:
./1776-santa-claus-vector-set.html:<div align="center"><a href="http://hotfile.com/dl/18418176/181a55b/Santa_Claus_Vector_Set.rar.html" target="_blank">HotFile</a></div>
Is there a way to just have the link shown in the output?
PS: I have everything else working, I just need an automated process of getting all the links.
I'm using mrtg to generate html files. With mrtg , i use indexmaker . Inside html files , i have found some html tag like "<SMALL>some text</SMALL>".
There is the manner to delete text inside two tags ? With bash script?
I cant print html files using linux mandriva (Foomatic)
View 5 Replies View RelatedMy system is fedora 15 and i have been using quanta plus as my editor to edit html and php files... I need windows based quanta plus .. though I googled a lot for windows platform I may not be able to get ..
View 2 Replies View RelatedCode:
<html>
<head>
</head>
<body>
[Code]....
Alright this works fine to pull the directories/files in the /var/Store/2010/ directory.
But when you click on of the links it tries to http://'serveradress'/$filename
note that $filename in the url is the filename clicked on so the php script is working. but I need it to change to that dir so that you can see the folder/files there and work your way up/down/side wise thru the folder tree to where you need to go. Not try and pop it as a direct url which doesn't work.