| Author | c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
hi,
i used c99 shell on my page, and i found bug on ftp, so i can access all filles on ftp, but after a maybe 2-3 hours my site get defaced, by some russian, or trukis hack group. It is possible, to be some bot, or anything, that checks all sites, and finding url http://www.site.com/c99.php, or in this script is some function, that alerts someone, that c99 shell is on this site, or it is just mishap?
have someone of you happening like this?
thanks
|
 |
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
Why would anyone have a php backdoor on their own site? also, c99 is supposed to be in text form so that when it's included, it gets parsed as PHP but so that you can't execute it directly as a php file.
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
1. U should always use the pass with login into c99
2. A lot of people write in the url site.com/c99.php - U should change the name of this file |
|
|
| Author | RE: c99 shell |
spyware
Member
Posts: 4192
Location:
Joined: 14.04.07
Rank: God
Warn Level: 90
| |
Lol, OP.
Seriously, try actual hacking.
"The chowner of property." - Zeph [small]�Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.� - Carl Sagan [center]�Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?� - Ebert[/ce |
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
ad slpctrl:
because i want to get some files from site that is on thesame server as my site, and i don't wanted to write my own script, i had it there just when i using it, when i got what i want, i deleted it, but after that i found new index.html on ftp, with deface message
ad PHmaster:
yes i but i get it just for 1-2 hours, i don't wanted to let it there...and i never dreamt of that someone can use this to deface my page
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
First of all, if there is FTP access the use a FTP client, less hazle, less blod sweet and tears!
And believe it not, c99 is a shell and is meant for use to get access to places your not supposed to be. Play with fire and you probably will get burnt, atleast if you don't know how to handle it properly.
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
root_op wrote:
First of all, if there is FTP access the use a FTP client, less hazle, less blod sweet and tears!
And believe it not, c99 is a shell and is meant for use to get access to places your not supposed to be. Play with fire and you probably will get burnt, atleast if you don't know how to handle it properly.
there is ftp, but normally i can access just my dir, but by c99 i can go anywhere i want....
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
Well then you should atleast htpasswd it. As i remember there is a password protecton built inside c99 aswell.
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
moshbat wrote:
... You installed a shell onto your website... FAIL!
And then wonders why he got hacked. I think this calls for a...wait it definitely calls for a:
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
mistake25 wrote:
hi,
i used c99 shell on my page, and i found bug on ftp, so i can access all filles on ftp, but after a maybe 2-3 hours my site get defaced, by some russian, or trukis hack group. It is possible, to be some bot, or anything, that checks all sites, and finding url http://www.site.com/c99.php, or in this script is some function, that alerts someone, that c99 shell is on this site, or it is just mishap?
have someone of you happening like this?
thanks
|
|
|
| Author | RE: c99 shell |
Member
Posts:
Location:
Joined: 01.01.70
Rank: Guest | |
Conclusion:
First! Don't place shells on your site.
Next! Don't place shells on your site.
Edited by on 08-08-08 13:55 |
|
|
