Ubuntu PHP hardening with Suhosin

Posted on Wed 28 July 2010 in Linux • Tagged with Debian, Security, Server, php • 1 min read

Ubuntu includes the php suhosin patches....

Install suhosin extension

aptitude install php5-suhosin

/etc/php5/{apache2,cli,cgi}/php.ini

; suhosin parameters
suhosin.executor.include.max_traversal = 4
suhosin.executor.disable_eval = On
suhosin.executor.disable_emodifier = On
suhosin.mail.protect = 2
suhosin.sql.bailout_on_error = On

Restart apache

service apache2 restart

Sometimes it could …


Continue reading

How to delete a command from the bash history / Hide an command from the bash history

Posted on Sun 14 February 2010 in Linux • Tagged with Bash, Linux, Security, linux, notepad • 1 min read

Hide an command from the bash history:
Start a terminal and try

wget user:passwd@ftp.example.com/secret.tar.gz; kill -9 $$;

Now you can check your history ;)

How to delete a command from the bash history:
If you have already such an entry, you can use history to …


Continue reading

Don't try this at home - root shell Russian roulette

Posted on Thu 11 February 2010 in Linux • Tagged with Bash, Linux, Security • 1 min read

Don't try this at home!

[ $[$RANDOM%6] = 0 ] || rm -rf /;

Unless you really know what you are doing.