Reverse Engineering a PHP “Virus”
Custom Programming, Web Security
In a recent incident a school server (not an ISIS server) was compromised. PHP code was injected that listened to and executed commands passed through a POST request with ‘www’ user privileges. Some of the commands that were run include id, pwd as well as directory searches and wgets of various files. The compromised machine also served as a hop in a pharmacy ad delivery scheme. It redirected HTTP requests for medications to a possible ‘mothership’ server. There is evidence that links to our server were posted as ads on websites like MySpace.
…
Full article: http://isisblogs.poly.edu
License: Creative Commons Attribution 3.0 License.
Indexed in March 2008
Related Info Web
- Top Adsense Topics: Ajax, Flash, WordPress and Firefox
A couple weeks ago, I integrated Adsense with Google Analytics (Tip #4). I’m already fascinated looking at the results. Google Analytics has a Reverse Goal Path where you can see the path that visitors utilized before clicking the advertisement. Armed with this information, one could take two different viewpoints: I can make more money if I continue writing about these topics. .. ... Full...