Results 1 to 5 of 5
Hybrid View
-
29th Aug 2011, 07:48 AM#1
MemberSo I go to my http://mywebsite.com/images/picture.png/index.php, and it gives me a bunch of codes, I'm guessing Nginx is vulnerable.Fortunately, the vulnerable servers are easy do identify and fix. Example: http://example.com/path/to/file.png ? a static object served by the vulnerable server. A crafted request to http://example.com/path/to/file.png/index.php for example should return 404. If it returns 500, then thing?s are bad. Worse though if it?s a 2xx or 3xx aka file.png = valid PHP.
Whats the fix? The article wasn't exactly clear and simple.LuDo8 Reviewed by LuDo8 on . Securing php-fpm with nginx Found this one while searching how to secure php-fpm. Source: https://nealpoole.com/blog/2011/04/setting-up-php-fastcgi-and-nginx-dont-trust-the-tutorials-check-your-configuration/ Rating: 5
Register To ReplySponsored Links
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
[TUT] Securing /tmp and /dev/shm partion
By .:Raymond:. in forum Technical and Security TutorialsReplies: 6Last Post: 9th Jun 2011, 08:47 AM -
[TUT] Securing SSH a bit ;)
By .:Raymond:. in forum Technical and Security TutorialsReplies: 13Last Post: 9th Jun 2011, 08:29 AM -
[Selling] VPS Securing Services
By iL < in forum Completed TransactionsReplies: 2Last Post: 31st Mar 2010, 05:13 AM -
Need help securing VPS!!
By lukip006 in forum Server ManagementReplies: 5Last Post: 31st Aug 2009, 04:14 PM -
securing vb forum
By lenney in forum vBulletinReplies: 16Last Post: 19th Jul 2009, 08:43 PM
Staff Online
themaCreator - create posts from...
Version 3.52 released. Open older version (or...