[Pauldotcom] With full read access what would you read (Part 2 - Linux Answer)
Ryan Sears
rdsears at mtu.edu
Tue Nov 2 23:37:22 UTC 2010
Can't forget about the /proc/self/fd/fd[0-9]* folder, which will give you the file handler of all the currently accessed files for whatever the webserver is running as, which is very useful for finding non-standard web directory paths.
Ryan Sears
----- Original Message -----
From: "Craig Freyman" <craigfreyman at gmail.com>
To: "PaulDotCom Security Weekly Mailing List" <pauldotcom at mail.pauldotcom.com>
Sent: Tuesday, November 2, 2010 4:15:40 PM GMT -05:00 US/Canada Eastern
Subject: [Pauldotcom] With full read access what would you read (Part 2 - Linux Answer)
This is the sister thread to Robin's question from earlier in the day. With read only access to a Linux file system, other than shadow and passwd files, what do you look for?
Thanks,
Craig
_______________________________________________
Pauldotcom mailing list
Pauldotcom at mail.pauldotcom.com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com
More information about the Pauldotcom
mailing list