Anyone running php, move the location from /cgi-bin/php. We've seen a few takeov... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		marquis on Jan 20, 2014 \| parent \| context \| favorite \| on: Kids, this is story of How I Met... my VPS hacked Anyone running php, move the location from /cgi-bin/php. We've seen a few takeovers with unpatched systems to run miners. Not everyone can take their server down and changing the location according to apache/nginx at least stops the bots from finding you immediately.

antihero on Jan 21, 2014 [–]

People are still running PHP as a cgi? I though the way to do it now was using a PHP-FPM pool with minimal privileges.

marquis on Jan 21, 2014 | [–]

Oh yes. There are some rather ancient things still out there that give me the shivers, but you come across them time to time.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact