#1  
Old 17th September 2006, 18:30
Boon-Dog-Danny Boon-Dog-Danny is offline
Member
 
Join Date: Jul 2006
Posts: 97
Thanks: 11
Thanked 1 Time in 1 Post
Exclamation jamed up my table borders??

Hi guys..

So everything was running smooth, I wake up this morning and all my table borders are showing , I run phpnuke, the site uses a header that has plain html in it.. the header was showing slashes before the image.. the header I fixed by removing the quotes.. what happened? I have a few copys of the nuke running in different folders.. all are effected, so Im thinking its not the phpnuke but maybe something that was maybe changed? I noticed in the error logs I had a person checking for all sorts of files..

a small sample..

[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] client denied by server configuration: /var/www/web1/web/.htaccess
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/.passwd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/.passwrd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/htpasswd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/htpasswrd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/htaccess
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/passwd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/.passwrd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/htpasswd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/htpasswrd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/htaccess
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/passwd
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/log
[Sat Sep 16 14:25:09 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/logs
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/logs
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/log
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/log
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/logs
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/stat
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/database
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/htdata
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] client denied by server configuration: /var/www/web1/web/admin
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/sys
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/html
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/ccbill
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/pre
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/controlpanel
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/wnu
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/htdata
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/tmp
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/sys~
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/adm
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/html
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/ibill
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/pre
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/web800
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/web900
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/dmr
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/lancelot
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/ofs.web-charge
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/widenet
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/servlets
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/servlet
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/servlet
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/_vti_pvt
[Sat Sep 16 14:25:10 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/servlet
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/_vti_pvt
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/_vti_pvt
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/scripts
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/scripts
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/cfdocs
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/cfdocs
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/iissamples
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/search97.vts
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/carbo.dll
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/web/cgi-bin
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/test.cgi
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] File does not exist: /var/www/web1/user/cgi-bin
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/aglimpse
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/view.sh
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/campas
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/~auth.cgi
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/nph-test-cgi
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/unlg1.1
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/maillist.pl
[Sat Sep 16 14:25:11 2006] [error] [client 70.248.213.216] script not found or unable to stat: /var/www/web1/cgi-bin/jj


anyway now my tables are showing.. any ideas how to change this back?
see it here..


UPDATE** ok for some reason quotes.. " wont run in a quick example php uses a lot of this type of code..

<td width="40%" height="83" align="right"><br>
<center><script type="text/javascript"><!--
google_ad_client = "pub-5213421994736748";
google_ad_width = 468;
google_ad_height = 60;
google_ad_format = "468x60_as";
google_ad_type = "text_image";

see the red quotes did not mark them all.... those no longer word so to speak.. anyone know why?

www.boon-dog.com

before I changed the header.. boon-dog.com/archives/

its member sign up.. feel free to sign up.. but to see the errors you can just load the page..


any ideas are welcome

Danny
__________________
Debian(rocks) + Ispconfig 3.0.3


Boon-Inc.com Great Video
Boon-File.com Create flash text
Boon-Host.com Get great FREE games here
Boon-Dog.com glitter text makers,music and more

Last edited by Boon-Dog-Danny; 17th September 2006 at 21:13.
Reply With Quote
Sponsored Links
  #2  
Old 18th September 2006, 12:07
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

I'm not sure I understand exactly what the problem is, but it sounds to me as if you need to run stripslashes() to get quotation marks working again.
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #3  
Old 19th September 2006, 18:05
Boon-Dog-Danny Boon-Dog-Danny is offline
Member
 
Join Date: Jul 2006
Posts: 97
Thanks: 11
Thanked 1 Time in 1 Post
Default thats it

thats it.. how do I do that?

do I just type stripslashes() in my terminal window?

>>ADDED<<
I'm thinking this has to be someone changing my system files.. how could they be doing this.. any ideas?



thanks tons Falko
__________________
Debian(rocks) + Ispconfig 3.0.3


Boon-Inc.com Great Video
Boon-File.com Create flash text
Boon-Host.com Get great FREE games here
Boon-Dog.com glitter text makers,music and more

Last edited by Boon-Dog-Danny; 20th September 2006 at 07:01.
Reply With Quote
  #4  
Old 20th September 2006, 17:58
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
Default

Quote:
Originally Posted by Boon-Dog-Danny
thats it.. how do I do that?

do I just type stripslashes() in my terminal window?
No, it's a PHP function, so you must use it in your PHP scripts: http://de3.php.net/manual/en/function.stripslashes.php

Quote:
Originally Posted by Boon-Dog-Danny
>>ADDED<<
I'm thinking this has to be someone changing my system files.. how could they be doing this.. any ideas?



thanks tons Falko
Please check your system with chkrootkit and rkhunter: http://www.howtoforge.com/faq/1_38_en.html
This one could also be interesting for you: http://www.howtoforge.com/intrusion_...ith_ossec_hids
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #5  
Old 22nd September 2006, 18:22
Boon-Dog-Danny Boon-Dog-Danny is offline
Member
 
Join Date: Jul 2006
Posts: 97
Thanks: 11
Thanked 1 Time in 1 Post
Default

ok .. again you ROCK!!

got the php fixed .. and found my hacker..me.. I did not change the php from the admin .. you know click something on then off.. and it never changed the php.ini so I thought it was fine.. when I did actually change the php.. it also changed to the revised settings that never clicked in before.. I went back thru and changed it back.. so its all fine now.. a related question,

in my security.. I have a deal that pop's a window open and gets info on the person and and you can add notes and such.. well all I get is the window now.. I have a radio pop-up its a radio that pops open to play different stations.. the same type of pop as my security.. dont work either..

what is controling that?.. ever heard of a problem like this before.. I know thats really vague.. I know of no other way to explain it.. the error, the window pops open.. but the page is blank.. no info
__________________
Debian(rocks) + Ispconfig 3.0.3


Boon-Inc.com Great Video
Boon-File.com Create flash text
Boon-Host.com Get great FREE games here
Boon-Dog.com glitter text makers,music and more
Reply With Quote
  #6  
Old 23rd September 2006, 16:12
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,711
Thanks: 1,899
Thanked 2,702 Times in 2,545 Posts
 
Default

Quote:
Originally Posted by Boon-Dog-Danny
what is controling that?.. ever heard of a problem like this before.. I know thats really vague.. I know of no other way to explain it.. the error, the window pops open.. but the page is blank.. no info
Please check Apache's error log. Might be a problem with register_globals, memory_limit, or maybe PHP Safe Mode...
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
can't initialize iptables table `filter asmadius Installation/Configuration 5 31st July 2006 15:36
Empty Recycle Bin jon335 General 40 6th May 2006 11:56
Virtual Users And Domains With Postfix, Courier And MySQL (+ SMTP-AUTH, Quota, SpamAs pontifex HOWTO-Related Questions 2 26th October 2005 17:54
postfix config jmroth Installation/Configuration 6 18th September 2005 15:58
mysqlcheck has found corrupt tables m u r Installation/Configuration 1 18th August 2005 10:47


All times are GMT +2. The time now is 04:23.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.