GalacNet - Web Server FaQ - Limit WGET and other SSH commands to root only

Warning: include(../style.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 14

Warning: include() [function.include]: Failed opening '../style.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 14

Warning: include(../body.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 15

Warning: include() [function.include]: Failed opening '../body.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 15

Warning: include(../logo.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 16

Warning: include() [function.include]: Failed opening '../logo.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 16

Warning: include(../top-tool.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 17

Warning: include() [function.include]: Failed opening '../top-tool.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 17

Warning: include(../left-paid.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 18

Warning: include() [function.include]: Failed opening '../left-paid.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 18

Warning: include(../left-free.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 19

Warning: include() [function.include]: Failed opening '../left-free.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 19

Warning: include(../faq-top.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 20

Warning: include() [function.include]: Failed opening '../faq-top.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 20

Server Administration Help - Limit WGET and other SSH commands to root only

Poorly programmed scripts can usually allow an attacker to force the apache user to load unwanted scripts to youer server.
This is usually done by excuting a wget command to a globally writable folder, usualy in /tmp.
As normal users do not have SSH access at all ( and its strongly suggested you do not give them any access ), the only person that would actually use SSH and WGET would be the server admin or the root user.

Excute the below to make several features only accessible by the root user.

chmod 750 /usr/bin/rcp 
chmod 750 /usr/bin/wget 
chmod 750 /usr/bin/lynx 
chmod 750 /usr/bin/links 
chmod 750 /usr/bin/scp

Sometimes the file may or may not be in the directories I listed, so please do a locate if things fail.

Back to FaQ Section

Warning: include(../right-top.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 69

Warning: include() [function.include]: Failed opening '../right-top.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 69

Warning: include(../right-mid.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 70

Warning: include() [function.include]: Failed opening '../right-mid.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 70

Warning: include(../right-bottom.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 71

Warning: include() [function.include]: Failed opening '../right-bottom.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 71

Warning: include(../bottom-ad.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 72

Warning: include() [function.include]: Failed opening '../bottom-ad.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 72

Warning: include(../bottom.php) [function.include]: failed to open stream: No such file or directory in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 73

Warning: include() [function.include]: Failed opening '../bottom.php' for inclusion (include_path='.:/usr/local/lib/php') in /home/galacnet/domains/galacnet.com/public_html/faq/faq-server-securewget.php on line 73