danwin1210/hosting
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Increase limits and add putenv to disabled functions (vulerability)

Browse Source 
Potential security vulnerability:
<?php
putenv("LD_PRELOAD=/home/site.onion/libtest.so");
mail("test@localhost","hacked","you");
This commit is contained in:
Daniel Winzen
2018-04-22 09:11:43 +02:00
parent c9487adb1a
commit 300cd647df
2 changed files with 6 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
etc/systemd/system/nginx.service.d/custom.conf
View File

@ -1,6 +1,6 @@
[Service]
LimitNOFILE=100000
TimeoutStartSec=300
TimeoutStartSec=600
ExecStop=
ExecStop=-/sbin/start-stop-daemon --quiet --stop --pidfile /run/nginx.pid
ExecStartPre=