Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
G
G
gadyuka2011-08-13 20:20:10
Information Security
gadyuka, 2011-08-13 20:20:10

Protection against Web Shells on Windows

There is a xampp Web server on Windows 7.

When uploading a web shell, an attacker is given the opportunity to view all the files and disks of the computer.
How to prevent it? What would prevent an attacker from viewing files in addition to the web directory?

There is no portability to Linux or another server.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
K
KoXGen, 2011-08-13
@KoXGen

Option 2:
1) Set permissions
2) Antivirus
The 1st option is universal, it will help against any shell, but setting the access rights correctly will be very stressful ...
The 2nd option will only help against common shells (r57, etc.), but won't even look at the self-written one...

Report
N
NeX, 2011-08-13
@NeX

prohibit writing to folders for the user under which Apache is running, and from which script execution is allowed

Similar questions
S
soldier22222019-12-04 18:15:20
DOS attack through GoldenEye and xerxes in Kali, PC freezes, why? 2Reply
D
Domus2017-07-07 12:07:37
What was the biggest DDOS attack? 2Reply
A
Alexander Klepenkov2017-07-09 10:15:31
Why is an EDS (enhanced qualified) issued for one year? 4Reply
R
Roman Rakzin2015-08-01 14:38:41
How to encrypt/decrypt data in golang/javascript transmitted via Websocket protocol? 1Reply
S
sasha_plh2015-08-06 13:00:14
Mail.ru substitution of the from field, how is it possible and who is to blame? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question