473,320 Members | 1,848 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

curl attack prevention

K.
Hello all!

Can you write me some code which let me sleep calm during the night
and what should I do to prevent some attackers from using curl function?

In Poland there is a big portal which become famous and some attackers
attacked it by using curl function and get all data about users.

Can you wirte me what should I do to prevent my portal from such attack?

Maybe id session regenerating is one of the thing which I should apply after
new login?

Thank you in advance
M.
Jan 30 '08 #1
6 4989
K. wrote:
What should I do to prevent some attackers from using curl function?
Unplug your server.

--
----------------------------------
Iván Sánchez Ortega -ivansanchez-algarroba-escomposlinux-punto-org-

Proudly running Debian Linux with 2.6.22-3-amd64 kernel, KDE 3.5.8, and PHP
5.2.5-1 generating this signature.
Uptime: 12:23:02 up 68 days, 22:38, 4 users, load average: 1.69, 1.23,
1.07

Jan 30 '08 #2
K. wrote:
Hello all!

Can you write me some code which let me sleep calm during the night
and what should I do to prevent some attackers from using curl function?

In Poland there is a big portal which become famous and some attackers
attacked it by using curl function and get all data about users.

Can you wirte me what should I do to prevent my portal from such attack?

Maybe id session regenerating is one of the thing which I should apply after
new login?

Thank you in advance
M.

Well, nothing special about curl.
It is just PHP's way of making http requests.

If the portals are hacked, they are NOT HACKED via Curl, but just USING
Curl.
The portals were unsafe to start with.

Regards,
Erwin Moller
Jan 30 '08 #3
K.
Well, nothing special about curl.
It is just PHP's way of making http requests.

If the portals are hacked, they are NOT HACKED via Curl, but just USING
Curl.
The portals were unsafe to start with.

Regards,
Erwin Moller
Yes, I have made a mistake with saying that they are hacked via curl.
I meant that how to prevent from hacking by using curl.

What things should I apply to make my site safe and be sure that nobody
who uses curl will not hacked my site?

Please answer.
I will be very grateful for help
M.
Jan 30 '08 #4
What things should I apply to make my site safe and be sure that nobody
who uses curl will not hacked my site?

Please answer.
I will be very grateful for help
Safety is not a command-line switch. Safety is looking what needs to be
done and exclude the rest. Like regenerating the session IDs. You should
always do that upon changing the user rights.
Also, take a good look at the file settings and look if sensitive files
are accessible from outside. Look at the possibility of SQL injection if
you use a database, and command-line injection if you call external
programs, e-mail injection if you send mail, etc.

And please don't expect our crystal balls to work if you even don't tell
us what OS you are using.

Safety is details and guarding those details.

Good luck,
--
Willem Bogaerts

Application smith
Kratz B.V.
http://www.kratz.nl/
Jan 30 '08 #5
On 30 Jan, 11:56, "K." <halinaciern...@poczta.onet.plwrote:
Well, nothing special about curl.
It is just PHP's way of making http requests.
If the portals are hacked, they are NOT HACKED via Curl, but just USING
Curl.
The portals were unsafe to start with.
Regards,
Erwin Moller

Yes, I have made a mistake with saying that they are hacked via curl.
I meant that how to prevent from hacking by using curl.
The same way you prevent every other type of HTTP mediated attack.

Stop obsessing about Curl.

If you're having trouble understanding how the attack worked then tell
us where we can get more info on it.

Otherwise try google for 'PHP security'

C.
Jan 30 '08 #6
K. wrote:
>Well, nothing special about curl.
It is just PHP's way of making http requests.

If the portals are hacked, they are NOT HACKED via Curl, but just USING
Curl.
The portals were unsafe to start with.

Regards,
Erwin Moller

Yes, I have made a mistake with saying that they are hacked via curl.
I meant that how to prevent from hacking by using curl.

What things should I apply to make my site safe and be sure that nobody
who uses curl will not hacked my site?

Please answer.
I will be very grateful for help
M.
You can't. You can't even tell if the user is using cURL, unless he
tells you.

Make your site safe and no one will be able to hack it - with or without
cURL. But if it isn't safe, it can be hacked - with or without cURL.

--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
js*******@attglobal.net
==================

Jan 30 '08 #7

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

1
by: Haluk Durmus | last post by:
Hello I checked out openssl,mm,apr,apr-util,apache 2,curl,libxml and php from cvs. php couse an ERROR I did the following steps:
3
by: Chris Fortune | last post by:
# uname -a Linux stargate.mxc-online.net 2.4.20-021stab022.2.777-smp #1 SMP Wed Jul 28 17:12:37 MSD 2004 i686 i686 i386 GNU/Linux I recompiled PHP with mcrypt, openssl, and curl phpinfo():...
3
by: Hans | last post by:
Hi everybody, I am desperately trying to log into my account at godaddy.com with PHP and Curl and just cannot make it happen. Has anybody written a script for this purpose? Here is what I...
6
by: Shutdownrunner | last post by:
I want to store result of curl in a variable, which means to store a webpage in a variable in order to parse it later and get our some useful information. But unfortunately I'm not too experienced...
0
by: nfhm2k | last post by:
I've been trying to find a solution to this for quite some time now... I even took a look at existing scripts... Including this one......
4
by: zorro | last post by:
Hello there, I can't figure out why is it that when i use an array for my postfields it doesn't work : this works curl_setopt($curl, CURLOPT_POSTFIELDS, "clown=bozo" ); this doesn't...
0
by: xerc | last post by:
I am trying to create a generic function I can call to download all files from a single remote FTP directory -- using CURL. I want to multi-thread it, but need to get the single thread functionality...
0
by: =?Utf-8?B?SGFyZHkgV2FuZw==?= | last post by:
Hi all, We know we can set up some propert firewall to do this job. But from application's side, what do you think we can do to prevent this type of attack? -- Regards Hardy
3
by: rottmanj | last post by:
I am re-writing my rets application in perl, and I have found a few modules that will help me on my way. One of them being WWW::Curl:easy. During my testing, I have tested both system curl and...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
1
by: PapaRatzi | last post by:
Hello, I am teaching myself MS Access forms design and Visual Basic. I've created a table to capture a list of Top 30 singles and forms to capture new entries. The final step is a form (unbound)...
0
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
0
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.