Clearer question, better title

Source Link

edited Jun 7, 2013 at 13:20

30k
17
82
147

How can I find the $string that was used in a Does PHP function exec($string) on Linuxstore the executed command anywhere?

Say someone has managed to get into my server andSuppose I have found the (web based) appfollowing code: in a PHP web application.

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
}
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from at random by a function with usingthat uses PHP rand. Is there any trace of the exec() string on the server?.

It'sI have not found the password in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file

find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

I need to know if thisthe value of $password string can be recovered iffrom the server was compromised. Ultimately can I claimin the $password is not stored onevent that the server? is compromised. Ultimately, can I claim that the value of $password is not stored on the server?

How can I find the $string that was used in a PHP function exec($string) on Linux?

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file

find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

I need to know if this $password string can be recovered if the server was compromised. Ultimately can I claim the $password is not stored on the server?

Does PHP exec() store the executed command anywhere?

Suppose I have the following code in a PHP web application.

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
}
mailuser($password);//uses standard PHP mail function

The password is generated at random by a function that uses PHP rand().

I have not found the password in /var/logs and not in .bash_history.

I need to know if the value of $password can be recovered from the server in the event that the server is compromised. Ultimately, can I claim that the value of $password is not stored on the server?

added 157 characters in body

Source Link

edited Jun 7, 2013 at 12:21

user127379

131
3

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file
find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

I need to know if this $password string can be recovered if the server was compromised. Ultimately can I claim the $password is not stored on the server?

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file
find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file
find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

I need to know if this $password string can be recovered if the server was compromised. Ultimately can I claim the $password is not stored on the server?

added 244 characters in body

Source Link

edited Jun 7, 2013 at 11:23

user127379

131
3

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file

find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

Say someone has managed to get into my server and have found the (web based) app code:

$encrypt ? $password = generatePassword($passwordstrength): $password="";
$estring = "7z a -p$password -mx0 packFoo.aes.7z mydir/foo";
if($encrypt) {
    exec($estring);
mailuser($password);//uses standard PHP mail function

The password is dynamically generated, a-zA-Z0-9 etc from a function with using PHP rand. Is there any trace of the exec() string on the server?

It's not in /var/logs and not in .bash_history.

I'm aware that someone can also:

brute force the file

find the email address from the database the email was sent to, send phishing email and get access to their account and search their mailbox for the email with the password.)

Source Link

asked Jun 7, 2013 at 11:17

user127379

131
3

Loading

Stack Exchange Network

Return to Question

How can I find the $string that was used in a Does PHP function exec($string) on Linuxstore the executed command anywhere?

How can I find the $string that was used in a PHP function exec($string) on Linux?

Does PHP exec() store the executed command anywhere?