fengcool.com » security http://www.fengcool.com Just another WordPress weblog Wed, 25 Jan 2012 19:09:58 +0000 http://wordpress.org/?v=2.8.1 en hourly 1 Linux Server Security Checklist http://www.fengcool.com/2008/11/linux-server-security-checklist/ http://www.fengcool.com/2008/11/linux-server-security-checklist/#comments Mon, 03 Nov 2008 22:17:25 +0000 Nelson http://www.fengcool.com/?p=54
  • Firewall (apf/csf and bfd)
  • Secure tmp partition (noexec)
  • rootkit scanning
  • PHP hardening
  • Apache hardening
  • Mod-security
  • Shell login notification
    • Share/Save/Bookmark]]>     http://www.fengcool.com/2008/11/linux-server-security-checklist/feed/ 0     SQL Injection vulnerability on Plesk 8.2.0 http://www.fengcool.com/2007/09/sql-injection-vulnerability-on-plesk-820/ http://www.fengcool.com/2007/09/sql-injection-vulnerability-on-plesk-820/#comments Mon, 24 Sep 2007 18:58:48 +0000 Nelson http://www.fengcool.com/2007/09/sql-injection-vulnerability-on-plesk-820/ I just read this one from SWsoft forum.

    There is a SQL injection vulnerable security hole exists on Plesk 8.x.x. Yes, it’s even on 8.2.0, which is the latest stable version.

    It’s /usr/local/psa/admin/plib/class.Session.php.

    Here’s the fix.

    Share/Save/Bookmark]]>     http://www.fengcool.com/2007/09/sql-injection-vulnerability-on-plesk-820/feed/ 0