Patches item #1489054, was opened at 2006-05-15 20:55 Message generated for change (Tracker Item Submitted) made by Item Submitter You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=800589&aid=1489054&group_id=156638
Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: Documentation Group: SVN Status: Open Resolution: None Priority: 5 Submitted By: Martin Geisler (mgeisler) Assigned to: Martin Geisler (mgeisler) Summary: Information about renaming phpshell.php Initial Comment: Some hosting environments use a simple form of "protection" whereby you are denied access to any file called phpshell.php or shell.php. This kind of "protection" only gives a false sense of security since you can rename phpshell.php to, say, happy_sunshine.php and then continue to use it... So SECURITY should be updated with information about this possibility. This is meant both as a reminder to administrators of shared web hosts who might think that blocking access to phpshell.php is enough, and as a tip for people who want to use PHP Shell dispite the wishes of the administrator. In general, SECURITY should contain more information about how one can block applications like PHP Shell. ---------------------------------------------------------------------- You can respond by visiting: https://sourceforge.net/tracker/?func=detail&atid=800589&aid=1489054&group_id=156638 ------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ phpshell-devel mailing list phpshell-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/phpshell-devel
