API tools faq
paste
lyfsy

* Free WAF for shared hosted website

lyfsy
Jan 23rd, 2020
103
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 8.00 KB | None | 0 0
raw download clone embed print report
  1. * Free WAF for shared hosted website
  2. I am looking for free scanning tool for my custom PHP website. As I am using a cheap shared hosting, they are charging me for their security package to have a anti-virus/firewall services.
  3. ++++++++++++++
  4. list of top cheapest host http://Listfreetop.pw
  5.  
  6. Top 200 best traffic exchange sites http://Listfreetop.pw
  7.  
  8. free link exchange sites list http://Listfreetop.pw
  9. list of top ptc sites
  10. list of top ptp sites
  11. Listfreetop.pw
  12. Listfreetop.pw
  13. +++++++++++++++
  14. Unfortunately my website is not Wordpress, which would helped me to add various free WAF.
  15.  
  16. If anyone one can recommend a free usable WAF that I can use on my website, without doing commands on the server.
  17.  
  18. I have tried one called WebCop which is useless. How can I get CWAF working within my website?
  19. As it is a custom PHP site on a shared server, you would need to use a service such as cloudflare, stackpath, etc but their WAFs are paid IIRC. It might be cheaper to upgrade to use the current host's WAF or switch to a provider that has one included.
  20. I am looking for free scanning tool for my custom PHP website.
  21. You can stop looking.
  22.  
  23. There is no need, as any such tool would be of severely limited benefit for a truly custom site. The "WAF" tools only work because the code they monitor is standardized. A custom site is anything but that.
  24.  
  25. Your best bet would be to periodically md5 compare the files on the site with the files in your repo. (and of course, look for new php files) If any changed, you'll know it.
  26. "I've seen spam you people wouldn't believe. Routers on fire off the OCs of AGIS. I watched MXes burning in the dark near the Cyberpromo Gateway. All those moments will be lost in time, like tears in rain. TTL=0."
  27. I am looking for free scanning tool for my custom PHP website. As I am using a cheap shared hosting, they are charging me for their security package to have a anti-virus/firewall services.
  28. Unfortunately my website is not Wordpress, which would helped me to add various free WAF.
  29.  
  30. If anyone one can recommend a free usable WAF that I can use on my website, without doing commands on the server.
  31.  
  32. I have tried one called WebCop which is useless. How can I get CWAF working within my website?
  33. Your provider do not have any protection for all sites on the server? Did you ask them on this? Or you are using self managed server?
  34. Poor person's Tripwire:
  35.  
  36. hosting permit
  37. hosting provider lookup
  38. domain 2020
  39. final fantasy 7 make money fast
  40. how to make money on youtube
  41. host mammoth for sale
  42. r domain specific language
  43.  
  44. Code:
  45. #!/bin/sh
  46.  
  47. SERIAL=`date +'%Y%m%d'`
  48. cd /some/where/to/save/new/data/
  49.  
  50. mkdir -p ${SERIAL}
  51.  
  52. cd ${SERIAL}
  53.  
  54. lftp -e 'mirror -c httpdocs' -uUSERNAME,PASSWORD ftp://Your.Ftp.Address
  55.  
  56. find httpdocs -type f -exec md5sum \{\} >> /some/where/to/save/data/${SERIAL}/md5sums \;
  57.  
  58. diff -iu /some/where/to/save/data/${SERIAL}/md5sums /my/master/data/md5sums > ${SERIAL}.diff || { cat ${SERIAL}.diff | mail -s "Files have changed on ${SERIAL}" [email protected] }
  59. ^^ Untested but you should be able to iron out flubs, if any.
  60. "I've seen spam you people wouldn't believe. Routers on fire off the OCs of AGIS. I watched MXes burning in the dark near the Cyberpromo Gateway. All those moments will be lost in time, like tears in rain. TTL=0."
  61. There is no need, as any such tool would be of severely limited benefit for a truly custom site. The "WAF" tools only work because the code they monitor is standardized. A custom site is anything but that. .
  62. So in terms of anti-virus/malware, one should not scan files beyond wordpress, joomla, etc popular scripts because they wont find some code injections? In terms of a WAF, custom sites can still use frameworks, SQL, etc that a WAF would help to protect.
  63. -Steven | u2-web@Cooini, LLC - Business Shared Hosting | Isolate sites with Webspaces | Site Builder | PHP-FPM | MariaDB
  64. WHMCS Modules: Staff Knowledgebase | Custom Modules and Hooks
  65. "It is the mark of an educated mind to be able to entertain a thought without accepting it" -Aristotle
  66. Meant in terms of like server scanner or downloading via ftp as you script does and doing scanning there. Sucuri for exmaple has scanning via ftp but IIRC it is paid . Also, your script presumes a server else where, which if that is the case wouldn't OP just use that server to host? Or perhaps a Linux PC .
  67. Meh - if using a framework sure, at least that portion of the code could be checked - but still limited benefit.
  68.  
  69. The single best tool for this kind of "spot the hack" monitoring is and was Tripwire, but that won't work on a shared environment since you usually don't get a shell account to play at the command line.
  70.  
  71. Next best bet would be something like my hacked up script from earler - although after writing it I'd probably change it to only find .php files -- especially if there's lot of media content on the site.
  72.  
  73. A custom site isn't going to change without user interaction doing it, so something that grabs the current site files, compares them to the "master" copies and reports any discrepancies is all that's really needed. Files that should not exist, or files that have been modified from their originals will be immediately found and reported.
  74. "I've seen spam you people wouldn't believe. Routers on fire off the OCs of AGIS. I watched MXes burning in the dark near the Cyberpromo Gateway. All those moments will be lost in time, like tears in rain. TTL=0."
  75. Meant in terms of like server scanner or downloading via ftp as you script does and doing scanning there. Sucuri for exmaple has scanning via ftp but IIRC it is paid . Also, your script presumes a server else where, which if that is the case wouldn't OP just use that server to host? Or perhaps a Linux PC .
  76. What's stopping anyone from running a little linux box inside a VMWare or VirtualBox VM? Hell you could do this from the BashForWindows linux addon to Windows 10.
  77.  
  78. ... and the reason you would do it from some other machine, preferably your home machine (or Virt) is that your master copies are pretty much guaranteed to be unaltered.
  79. "I've seen spam you people wouldn't believe. Routers on fire off the OCs of AGIS. I watched MXes burning in the dark near the Cyberpromo Gateway. All those moments will be lost in time, like tears in rain. TTL=0."
  80. Poor person's Tripwire:
  81.  
  82. Code:
  83. #!/bin/sh
  84.  
  85. SERIAL=`date +'%Y%m%d'`
  86. cd /some/where/to/save/new/data/
  87.  
  88. mkdir -p ${SERIAL}
  89.  
  90. cd ${SERIAL}
  91.  
  92. lftp -e 'mirror -c httpdocs' -uUSERNAME,PASSWORD ftp://Your.Ftp.Address
  93.  
  94. find httpdocs -type f -exec md5sum \{\} >> /some/where/to/save/data/${SERIAL}/md5sums \;
  95.  
  96. diff -iu /some/where/to/save/data/${SERIAL}/md5sums /my/master/data/md5sums > ${SERIAL}.diff || { cat ${SERIAL}.diff | mail -s "Files have changed on ${SERIAL}" [email protected] }
  97. ^^ Untested but you should be able to iron out flubs, if any.
  98. Where to I run this script from? cPanel, or FTP...
  99. I am too looking for something similar
  100. To answer all the questions at once:
  101.  
  102. On your home computer, run a Linux virtual machine. This can be done (for free) using VMWare or VirtualBox. If you use Windows 10 you can also enable and use the Bash For Windows add-on to to Windows 10:
  103.  
  104. https://www.howtogeek.com/249966/how...on-windows-10/
  105.  
  106. On that virtual machine, or within the Linux environment created by your Windows 10 computer, you would have a master copy of your web site's critical text files (php, html, htaccess etc) That is where you run this script.
  107.  
  108. It connects to your hosting server, downloads your site's files, and then compares your master files against what it just downloaded and reports any discrepancies found.
  109.  
  110. It is based upon the same methodology used by Tripwire, so if you're not in a shared environment and have your own dedicated server or VPS, then just use Tripwire instead. As a bonus, Tripwire will monitor your entire OS installation.
  111.  
  112. https://www.linuxjournal.com/article/8758
  113. "I've seen spam you people wouldn't believe. Routers on fire off the OCs of AGIS. I watched MXes burning in the dark near the Cyberpromo Gateway. All those moments will be lost in time, like tears in rain. TTL=0."
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!