Well, if you were able to upload a PHP script, you'd also be able to upload
a binary file, which would have the ability to run exec("yourbinary");... -----Original Message----- From: Dustin E. Childers [mailto:[EMAIL PROTECTED]] Sent: Thursday, April 18, 2002 3:41 AM To: James Cox Cc: [EMAIL PROTECTED] Subject: Re: [PHP] Nasty DoS in PHP You can't upload a binary file to a server and access it through a web browser. The most it will do is either show the 'source' for file or ask you to download it. Yes, this is probably not a major DoS attack..and there aren't many free hosts out there that have PHP support. The most you could probably do is take out your own server, but you never know what script kiddies are willing to do in order to take down a server. Dustin E. Childers Security Administrator. CEO, Digitux Security, Inc. http://www.digitux.net/ ----- Original Message ----- From: "James Cox" <[EMAIL PROTECTED]> To: "Dustin E. Childers" <[EMAIL PROTECTED]>; "Jason Murray" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Wednesday, April 17, 2002 5:28 PM Subject: RE: [PHP] Nasty DoS in PHP > so why not upload a binary file and execute that ? quick root-kit later and > you're in. > > > -----Original Message----- > From: Dustin E. Childers [mailto:[EMAIL PROTECTED]] > Sent: Thursday, April 18, 2002 3:22 AM > To: Jason Murray > Cc: [EMAIL PROTECTED] > Subject: Re: [PHP] Nasty DoS in PHP > > > "If the user has enough access to the server to place files on it" ? > > There are hosting places that have PHP and you can just upload the PHP > script through FTP and access it in your browser. > > Dustin E. Childers > Security Administrator. CEO, Digitux Security, Inc. > http://www.digitux.net/ > > ----- Original Message ----- > From: "Jason Murray" <[EMAIL PROTECTED]> > To: "'Dustin E. Childers'" <[EMAIL PROTECTED]> > Cc: <[EMAIL PROTECTED]> > Sent: Wednesday, April 17, 2002 5:14 PM > Subject: RE: [PHP] Nasty DoS in PHP > > > > > It's a default PHP installation. We aren't calling set_time_limit(). > > > I know its an infinite loop, the point is that if a user wanted to > > > attack a server (happens every day) they would be able to use this > > > method to take the server down. > > > > But, if the user has enough access to the server to place files on it, > > then they can do much, much worse stuff than running an infinite loop > > in PHP. Like I said, if it gets to that point you have bigger problems. > > > > Jason > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
