GoFuckYourself.com - Adult Webmaster Forum - View Single Post - SERIOUS SECURITY HOLE: Anyone who has scripts that use access.log piping MUST READ

ServerGenius · 11-10-2007, 04:41 PM

Hi,

If you use scripts on your server that use httpd log file piping CONTACT me
inmediately so I can explain you how to prevent DISSASTERS

hhhhhhmmm OK Genius but how do I know if I do?
Check your apache virtual host configs and look if there's anything that looks
like this:

CustomLog "|/usr/bin/php

or

CustomLog "|/usr/bin/perl

If you have this I suggest you contact me asap......this is MAJOR!

This is no joke and neither some kind of creative SPAM

11-10-2007, 04:41 PM
ServerGenius Confirmed User Join Date: Feb 2002 Location: Amsterdam Posts: 9,377	SERIOUS SECURITY HOLE: Anyone who has scripts that use access.log piping MUST READ Hi, If you use scripts on your server that use httpd log file piping CONTACT me inmediately so I can explain you how to prevent DISSASTERS hhhhhhmmm OK Genius but how do I know if I do? Check your apache virtual host configs and look if there's anything that looks like this: CustomLog "\|/usr/bin/php or CustomLog "\|/usr/bin/perl If you have this I suggest you contact me asap......this is MAJOR! This is no joke and neither some kind of creative SPAM __________________ \| http://www.sinnerscash.com/ \| ICQ: 370820 \| Skype: SinnersCash \| AdultWhosWho \|