z3 Networks Ltd.

suPHP… Just Use It!

What is suPHP you might ask?  Well short of me explaining in detail what you can read elsewhere check out this link if you have any questions past my short description: http://www.suphp.org/FAQ.html

“suPHP is a tool for executing PHP scripts with the permissions of their owners. It consists of an Apache module (mod_suphp) and a setuid root binary (suphp) that is called by the Apache module to change the uid of the process executing the PHP interpreter.”

So you might be asking yourself whats the point in restructuring your PHP enviroment to utilize ‘suPHP’ instead of ‘phpsuexec.’  Probably the best reasons are protection of user’s files, better details for logging and monitoring services, which in turn protects servers, clients, and end-users from spammers. (continue reading…)

So last weekend I took a trip up to Wellington, New Zealand’s capital city, for NZ’s very own hacking and security convention Kiwicon 2k8.  It was nice to get our and see some more of the country as I’ve been pretty busy since I moved here, and as an added bonus I was able to learn me some new haxz0r’ing skills, haha.  Yeah yeah yeah… I know… a whole week to get this entry posted?  Pssh, it takes time to recover from something like KiwiCon, and of course on top of that I’ve still got actual work to do, anyways, enjoy!

(continue reading…)

So you have bought yourself a dedicated linux webserver or vps do you?  How spectacular are your iptables skills?  Not so hot, or do you just not like having to manage all those allows/denys etc by hand? *grin*  Well most likely you’re already using some sort of firewall as it came default installed from your service provider; at least I hope so. (continue reading…)