Quote:
Originally Posted by halfpint
'find suid files'
'find config* files'
'find all writable files'
'find all writable directories'
'find all service.pwd files'
'show opened ports'
|
There is no reason what-so-ever for a cgi script to use those commands except to hack your server.
Free scripts aren't the problem, it's when hackers put that stuff in the free script and tell you they wrote it. Don't get copies of scripts from anyone except the original source because it's their reputation they are protecting that makes the script safe.