!C99Shell v. 1.0 pre-release build #16!

Software: Apache/2.0.54 (Fedora). PHP/5.0.4 

uname -a: Linux mina-info.me 2.6.17-1.2142_FC4smp #1 SMP Tue Jul 11 22:57:02 EDT 2006 i686 

uid=48(apache) gid=48(apache) groups=48(apache)
context=system_u:system_r:httpd_sys_script_t 

Safe-mode: OFF (not secure)

/usr/share/doc/tux-3.2.18/tux/   drwxr-xr-x
Free 3.8 GB of 27.03 GB (14.05%)
Home    Back    Forward    UPDIR    Refresh    Search    Buffer    Encoder    Tools    Proc.    FTP brute    Sec.    SQL    PHP-code    Update    Feedback    Self remove    Logout    


Viewing file:     security.html (3.45 KB)      -rw-r--r--
Select action/file-type:
(+) | (+) | (+) | Code (+) | Session (+) | (+) | SDB (+) | (+) | (+) | (+) | (+) | (+) |
Security
Red Hat Content Accelerator 2.2: Reference Manual
PrevNext

Chapter 4. Security

Red Hat Content Accelerator is designed to have very strict security. This is possible because the assistant user-space daemons is used to handle the complex exceptions.

Red Hat Content Accelerator only serves a file if

  1. The URL does not contain ?.

  2. The URL does not start with /.

  3. The URL points to a file that exists.

  4. The file is world-readable. [1]

  5. The file is not a directory. [1]

  6. The file is not executable. [1]

  7. The file does not have the sticky-bit set. [1]

  8. The URL does not contain any forbidden substrings such as .. [1]

Notes

[1]

Configurable through the sysctl parameters in /proc/sys/net/tux

PrevHomeNext
Red Hat Content Accelerator as an FTP Server User-space Loadable Modules

:: Command execute ::

Enter:
 
Select:
 

:: Search ::
  - regexp 
:: Upload ::
 
[ Read-Only ]

:: Make Dir ::
 
[ Read-Only ]
:: Make File ::
 
[ Read-Only ]

:: Go Dir ::
 
:: Go File ::
 

--[ c99shell v. 1.0 pre-release build #16 powered by Captain Crunch Security Team | http://ccteam.ru | Generation time: 0.0032 ]--