Re: [nyphp-talk] analysis of php attacks

Nice topic! A cool exploit I used for some security test was an hidden upload form used as backdoor to upload PHP files, in combination with this phpinstaller, I was able to compress all files in a single auto-deflating PHP and upload on the website. If yo

Re: [nyphp-talk] Embedded PHP

On 11/9/2011 11:01 AM, Cristian Baltatescu wrote: I always hated answers to questions like this that proposed a totally different solution, BUT :) Since you would be ok with a very basic/crippled version of php then why stick with it? I'm sure you can handle what you mentioned (basic variable m

Re: [nyphp-talk] Embedded Followup

On 11/9/2011 10:58 AM, Ap | Alsjeblaft! wrote: How about a plug computer like the Guruplug Server (http://www.globalscaletechnologies.com/p-31-guruplug-server-standard.aspx) or TonidoPlug2 (http://www.tonidoplug.com/)? They're about $120, but have somewhat better specs. I've been thinking about

Re: [nyphp-talk] Embedded PHP

I always hated answers to questions like this that proposed a totally different solution, BUT :) Since you would be ok with a very basic/crippled version of php then why stick with it? I'm sure you can handle what you mentioned (basic variable manipulation and echo) in any similar scripting languag

Re: [nyphp-talk] Embedded Followup

How about a plug computer like the Guruplug Server ( http://www.globalscaletechnologies.com/p-31-guruplug-server-standard.aspx) or TonidoPlug2 (http://www.tonidoplug.com/)? They're about $120, but have somewhat better specs. I've been thinking about turning one of these into my own ultraportable lo

Re: [nyphp-talk] Embedded PHP

On Wed, Nov 9, 2011 at 10:08 AM, Gary Mort wrote: > > > Instead, I'm thinking of trying to do it from the other end - ie clone the > source and then remove every directory and file not needed to compile, as > well as removing more from the configuration script and makefile - with the > first goal

[nyphp-talk] Embedded Followup

Erg, as a followup, in case someone doesn't want to take the time to work through those links: Raspberry Pi: proposed pricing will be 25/35 25$ model: 128MiB memory, 1x USB 2.0, 1xHDMI 35$ model: 256MiB, 2x USB 2.0, Ethernet, 1xHDMI Processor will be the same ARM SoC used in the Roku 2 Beaglebo

[nyphp-talk] Embedded PHP

Got a fun little gizmo from Texas Instruments, a Chronos Watch[thanks to http://tideals.com/]... and that has gotten me thinking about playing with circuits again. The problem is, I HATE the idea of learning a bunch of new coding for what in the end is a hobby for fun. Add to that the upcom

Re: [nyphp-talk] analysis of php attacks

On 10/20/2011 5:10 PM, Chris Snyder wrote: It would be more interesting to find out that these attacks are happening in VPSes or private servers, which would indicated a real exploit, rather than on GoDaddy or Dreamhost or some other shared system. I find there are 3 classifications of attacks

Re: [nyphp-talk] Drupal Performance

On 10/11/2011 3:14 PM, Steve Manes wrote: Another pertinent question is how many concurrent logged-in users do you average? Drupal is actually pretty good about caching pages for anonymous users because they all see essentially the same output. But lots of login accounts creates lots of dynamic