Block PHP Proxy?

[rzRDJ]

Hi,

One of my users has uploaded a PHP Proxy and they can browser the internet with my IP.

Is there a way to block these PHP Proxies?

 

[Aaron_E]

Disable url_fopen for that user (or as a default and only allow it for specific users/domains)


http://nl.php.net/manual/en/filesystem.configuration.php#ini.allow-url-fopen

 

[zEitEr]

Hi,

One of my users has uploaded a PHP Proxy and they can browser the internet with my IP.

Is there a way to block these PHP Proxies?

Hello,

You might need to deny connections on remote 80,443,etc ports with your firewall for unprivileged users, and allow such connections for superusers and some others.

Disable url_fopen for that user (or as a default and only allow it for specific users/domains)

Some of them (or even the most known to me) uses cURL extension.

 

[scsi]

Wow I would be deleting that user immediately and terminate his service.

 

[Arieh]

Disabling functions and blocking access would work, but would probably also block legitimate users. You should just set it as a rule in the terms and conditions and if they do setup a proxy, warn or disable them.

 

[scsi]

In custombuild you can do the following command to help disable dangerous php functions:

cd /usr/local/directadmin/custombuild
./build secure_php

 

[zEitEr]

In custombuild you can do the following command to help disable dangerous php functions:

It does nothing with cURL.

but would probably also block legitimate users

Depending on TOS of course... you can always allow UID in firewall for a legitimate user.