Latest Announcemnent
New thread

[VIDEO TUT]How to install Mod_Security and Harden PHP

Status
Not open for further replies.
D

Dom

Active Member
608
2010
53
0
[youtube]KSiJecznzvo[/youtube]



Commands I mentioned in the Video :

Code: 
wget -O /usr/local/apache/conf/modsec_rules.tgz \
 http://www.uhgbug.com/files/modsec_rules.tgz;
tar xvfz /usr/local/apache/conf/modsec_rules.tgz --directory \
/usr/local/apache/conf/
/usr/local/apache/bin/httpd -k graceful
Code: 
disable_functions  = "php_uname,delete,system,etmyuid,getmypid,passthru,leak,listen,diskfreespace,tmpfile,link,ignore_user_abord,shell_exec,dl,set_time_limit,exec,system,highlight_file,source,show_source,fpaththru,virtual,posix_ctermid,posix_getcwd,symlink,popen,system,escapeshellarg,escapeshellcmd,myshellexec,c99_buff_prepare,c99_sess_put,fpassthru,posix_getegid,posix_geteuid,posix_getgid,posix_getgrgid,posix_getgrnam,posix_getgroups,posix_getlogin,posix_getpgid,posix_getpgrp,posix_getpid,posix,getppid,posix_getpwnam,posix_getpwuid,posix_getrlimit,posix_getsid,posix_getuid,posix_isatty,posix_kill,posix_mkfifo,posix_setegid,posix_seteuid,posix_setgid,posix_setpgid,posix_setsid,posix_setuid,posix_times,posix_ttyname,posix_uname,proc_open,proc_close,proc_get_status,proc_nice,proc_terminate,phpinfo "
Dont mind my voice just had a couple of beers
 
Last edited:
14 comments
Wonderful, this gives you great respect.

I think it's very impressive. Thank you for an amazing helpful guide.

Do not hesitate to come up with more :P

Thanks
 
If you're trying to follow the tutorial, after you installed mod_security then run these commands in SSH:

Code: 
wget -O /usr/local/apache/conf/modsec_rules.tgz \
 http://www.uhgbug.com/files/modsec_rules.tgz;
tar xvfz /usr/local/apache/conf/modsec_rules.tgz --directory \
/usr/local/apache/conf/
/usr/local/apache/bin/httpd -k graceful
 
Status
Not open for further replies.
Back
Top