nyoman
- Total activity 23
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 6
Activity overview
Latest activity by nyoman-
nyoman commented,
I tested /usr/local/maldetect/modsec.sh and it's pretty broken. You have to turn on global scanning (to let all users use maldet) and it still scans /tmp on every scan. Not impressive at all. You e...
-
nyoman commented,
Any outdated plugins? More often than not, those are the culprit. Also, there could be code injections hiding in some files, best to force re-install the WP files just to be sure. What you really ...
-
nyoman commented,
Change mysql password. Update WP Change wp-admin password. And they still able upload phpshell ? -rw------- 1 xxxxxspa xxxxxspa 33259 May 15 14:37 phpi6xb4Z root@elite:[~] # more /tmp/phpi6x...
-
nyoman commented,
@cPanelMichael : the server use modSecurity and suPHP Domain use OLD WordPress (version 3.9.6), many time send email to the owner to update the WordPress, but they ignore my email. @quizknows: i k...
-
nyoman created a post,
Log Checking
One of my user on Dedicated server/WHM/Cpanel look like compromised. There is always a strange file in /tmp (it is a phpshell) and i can not find, how the attacker upload this files. I got a repo...
-
nyoman commented,
Got it, It is on cpanel, under Forward, you will see Add Domain Forwarder to setup this functions The files is created under /etc/vdomainaliases/sub.domain.com sub.domain.com : domain.com Nyoman
-
nyoman commented,
You can change it on /usr/local/apache/conf/httpd.conf DirectoryIndex index.html.var index.htm index.html index.shtml index.xhtml index.wml index.perl index.pl index.plx index.ppl index.cgi index....
-
nyoman commented,
Confirmed and working properly :)
-
nyoman commented,
]
-
nyoman commented,
]Hello :) Have you considered simply updating the MX records for your domain names so that all email is handled on the remote mail server? Thank you. Thanks for the reply Michael, Do you mean u...