PHP injections - how to prevent?

Problems with the Windows version of XAMPP, questions, comments, and anything related.

PHP injections - how to prevent?

Postby Ph1L » 21. January 2013 09:46

Running XAMPP 1.6.6.a on a Windows Server 2003, 10+ sites keeps getting infected with "base64_decode" in all *.php files, in all the php files from c:\path\xampp

How to prevent this?
What is normal Windows Security on the folders here? Special the folders in "htdocs"

And before you say "upgrade XAMPP", well, customers have old PHP version, so no.
Ph1L
 
Posts: 2
Joined: 21. January 2013 09:42
XAMPP Version: 1.8.2
Operating System: Windows Server 2003

Re: PHP injections - how to prevent?

Postby Nobbie » 21. January 2013 11:39

Ph1L wrote:How to prevent this?


By reading and following readme.txt (instead of ignoring it):

A matter of security (A MUST READ!)

As mentioned before, XAMPP is not meant for production use but only for developers in a development environment. The way XAMPP is configured is to be open as possible and allowing the developer anything he/she wants. For development environments this is great but in a production environment it could be fatal.
Nobbie
 
Posts: 6575
Joined: 09. March 2008 13:04

Re: PHP injections - how to prevent?

Postby Ph1L » 21. January 2013 13:56

I know, but that didn't answer my questions.
Ph1L
 
Posts: 2
Joined: 21. January 2013 09:42
XAMPP Version: 1.8.2
Operating System: Windows Server 2003

Re: PHP injections - how to prevent?

Postby JJ_Tagy » 21. January 2013 14:29

PHP is not inherently a security hole. What you use it for and how you use it introduces the security issues. Without knowing what your code is, there is no way to speculate how someone is uploading injectors to the system. Use of .htaccess and mod_rewrites are a good place to start.
JJ_Tagy
 
Posts: 515
Joined: 30. January 2012 13:44
XAMPP Version: 1.8.3
Operating System: Windows 7 x64

Re: PHP injections - how to prevent?

Postby Altrea » 21. January 2013 14:38

Hi Ph1L,

Ph1L wrote:I know, but that didn't answer my questions.

you are using XAMPP in an unsupported manner, so which answeres do you expect?
Using XAMPP in insecure networks indicates that you have taken some time to evaluate if you have the needed knowledge to make and keep the package secure.

Ph1L wrote:How to prevent this?

Search the security hole and close it.
That can be anything from a true security issue in one of the components, an insecure module (e.g. webDAV), an insecure webapplication from one of your customers, etc.
We can't do the work for you, sorry.

best wishes,
Altrea
We don't provide any support via personal channels like PM, email, Skype, TeamViewer!

It's like porn for programmers 8)
User avatar
Altrea
AF Moderator
 
Posts: 6536
Joined: 17. August 2009 13:05
XAMPP Version: 5.5.19
Operating System: W7Ux64


Return to XAMPP for Windows

Who is online

Users browsing this forum: No registered users and 68 guests