Secure php file execution NOW!

[NewEraCracker]

I've found a problem with the execution of files with unknown extensions.

To see the server is vulnerable upload a file named bug.php.kkk and see if it executes:

Code: 

<?php echo "bugged"; ?>

If you see just "bugged" while executing it, your server IS NOT secured. If you see ALL text (including the php tags) in the browser or in the downloaded file, your server seems to be secure.

This is caused by:

"Files can have more than one extension, and the order of the extensions is normally irrelevant. (...) Care should be taken when a file with multiple extensions gets associated with both a MIME-type and a handler. This will usually result in the request being handled by the module associated with the handler."
See:

Code: 

http://httpd.apache.org/docs/2.2/mod/mod_mime.html#multipleext
http://www.php.net/manual/en/install.windows.apache2.php

How to fix:

Find in configuration:

Code: 

AddHandler application/x-httpd-php .php

Replace with:

Code: 

<FilesMatch \.php$>
SetHandler application/x-httpd-php
</FilesMatch>

Regards,
NewEraCracker

NewEraCracker Reviewed by NewEraCracker on 19th Jul 2011. Secure php file execution NOW! I've found a problem with the execution of files with unknown extensions. To see the server is vulnerable upload a file named bug.php.kkk and see if it executes: <?php echo "bugged"; ?> If you see just "bugged" while executing it, your server IS NOT secured. If you see ALL text (including the php tags) in the browser or in the downloaded file, your server seems to be secure. This is caused by: "Files can have more than one extension, and the order of the extensions is normally Rating: 5