Never been to CodeSnippets before?

Snippets is a public source code repository. Easily build up your personal collection of code snippets, categorize them with tags / keywords, and share them with the world (or not, you can keep them private!)

6 total

On This Page:

  1. 1 prevent script execution upload directories php shtml
  2. 2 Update to ClamAV 0.94
  3. 3 Protect .svn directories using htaccess
  4. 4 Protect .svn directories server-wide (Apache)
  5. 5 FIND INSECURE 777 PERMISSION FILES ON CPANEL SERVER
  1. 6 Using HTTP conditions and url.access-deny to have Lighttpd block some user agents and referers

prevent script execution upload directories php shtml

to security linux administration by deckard on Nov 25, 2008
// description of your code here

<Directory "/Library/MediaWiki/web/images">
   # Ignore .htaccess files
   AllowOverride None
 
   # Serve HTML as plaintext, don't execute SHTML
   AddType text/plain .html .htm .shtml
 
   # Don't run arbitrary PHP code.
   php_admin_flag engine off
 
   # If you've other scripting languages, disable them too.
</Directory>

Update to ClamAV 0.94

to shell security osx mac bash unix update clamav virus clamd scanner by jvs on Oct 24, 2008
Compile ClamAV from source on Mac OS X, but apply the following changes to /private/var/clamavadmin/clamd.conf.
# cf. man 5 clamd.conf after update

# delete the following two lines in /private/var/clamavadmin/clamd.conf
ArchiveMaxFileSize 100M
ArchiveMaxCompressionRatio 0

# add the following two lines to /private/var/clamavadmin/clamd.conf
MaxFileSize 300M
MaxScanSize 150M

References:
- What's New: ClamAV 0.94
- What's New: ClamAV 0.94.1

Protect .svn directories using htaccess

to apache sysadmin freebsd svn security subversion htaccess config linux cvs by jamiew on Jan 22, 2008
// block access to .svn dirs
// should be done server-wide if you can (another snippet) 

<IfModule mod_rewrite.c>
  RewriteRule ^(.*/)?\.svn/ - [F,L]
  ErrorDocument 403 "Access Forbidden"
</IfModule>

Protect .svn directories server-wide (Apache)

to apache sysadmin svn security subversion htaccess server config cvs protection hidden by jamiew on Jan 22, 2008
// protect ".svn" and "CVS" dirs (could add more)
// for server-wide protection; goes in httpd.conf
// there's a separate snippet for .htaccess-based code

<DirectoryMatch "^/.*/(\.svn|CVS)/">
  Order deny,allow
  Deny from all 
</DirectoryMatch>

FIND INSECURE 777 PERMISSION FILES ON CPANEL SERVER

to security permissions by alexming on Jun 27, 2007
// FIND INSECURE 777 PERMISSION FILES ON CPANEL SERVER

find /home/*/public_html/ -perm 0777 -ls
find /home*/public_html/ -uid 99 -ls

Using HTTP conditions and url.access-deny to have Lighttpd block some user agents and referers

to lighttpd http conditionals url.access-deny blocks security by jason on May 26, 2005 
# deny access for Indy Library a Tester
$HTTP["useragent"] =~ "Indy" { url.access-deny = ( "" ) }
 
# deny access for a hydrocodone containing refer 
$HTTP["referer"] =~ "hydrocodone" { url.access-deny = ( "" ) }
6 total

On This Page:

  1. 1 prevent script execution upload directories php shtml
  2. 2 Update to ClamAV 0.94
  3. 3 Protect .svn directories using htaccess
  4. 4 Protect .svn directories server-wide (Apache)
  5. 5 FIND INSECURE 777 PERMISSION FILES ON CPANEL SERVER
  1. 6 Using HTTP conditions and url.access-deny to have Lighttpd block some user agents and referers