[nsp-sec] Ddos controller - caatadgouk.com
John Fraizer
john at op-sec.us
Fri Jun 27 13:44:06 EDT 2008
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Rob Thomas wrote:
> ----------- nsp-security Confidential --------
> -------------------------------------------------
> 2008-01-21 21:45:13 | 85.255.121.195 | 27595 | malwareurl |
> http://xdrkzahpvq.cn/progs/arzoegr/sjujmaik.php
>
> This one appears to be Debian Linux with Apache 2.2.6 and PHP 5.2.4-2
> with "Suhosin-Patch." I'm too lazy to Google that patch, so I've no
> clue what that is.
>
- From http://www.hardened-php.net/suhosin/
Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP
core. Suhosin comes in two independent parts, that can be used separately or in combination. The first part is a small patch against the PHP core, that implements a few
low-level protections against bufferoverflows or format string vulnerabilities and the second part is a powerful PHP extension that implements all the other protections.
Unlike the PHP Hardening-Patch Suhosin is binary compatible to normal PHP installation, which means it is compatible to 3rd party binary extension like ZendOptimizer.
John
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Mandriva - http://enigmail.mozdev.org
iD8DBQFIZSbm+16lRpJszIgRAggkAJ9m7tx2w4hQ8ONNi9ssqqKCdV4fSQCfQ0mo
sZDNtip8yXBiH5jmSFwtDOk=
=aXeD
-----END PGP SIGNATURE-----
More information about the nsp-security
mailing list