Collaborate Disseminate
I’m trying to reproduce some of the Tomcat 9.x.x vulnerabilities from this list, in particular the HTTP smuggling vulnerabilities. However, so far I haven’t been able to reproduce any of them. Currently I’m running Tomcat 9.0.0.M1 behind a… Continue reading How to reproduce Tomcat 9.0.0.M1 HTTP smuggling vulnerabilities?
I am migrating to Artifactory on RHEL8 as a Docker remote repository, i.e. Artifactory is a proxy for a docker registry hosted through Jfrog.io.
We have a legacy registry with config in /etc/docker/certs.d/. Another instance works fine wit… Continue reading docker daemon reports ‘tls: unconfigured cipher suite’ for Nginx reverse proxy of Artifactory Docker registry
Let’s say there is a webapp where users can upload files with sensitive data and view analytics generated by the backend. Does using a reverse proxy like nginx or Apache actually help with the security of the website? I have seen this clai… Continue reading Does using Apache/nginx actually improve security of a webapp?
I’m learning about HTTP request smuggling and for this i’m trying to "break" into a broken site that is running under docker. The architecture of the site is Cache -> NGINX -> site. The Cache layer parses the Content-Length… Continue reading HTTP request smuggling on NGINX gives error 400?
I have a logged http request in nginx logs which drives me nuts because I don’t understand how it’s finding its way into the logs:
[03/Jul/2023:13:45:04 +0000] 400 – GET http localhost "/bin/zhttpd/${IFS}cd${IFS}/tmp;${IFS}rm${IFS}-rf… Continue reading Weird hack attempt nginx proxy manager and photoprism drives me nuts
I have a ubuntu server (Ubuntu 22.10 x64) on Digital Ocean. And I am using fastapi, uvicorn, gunicorn and nginx as I used it for my backend api calls from my frontend and my frontend IP is dynamic.
Recently, I have been getting unknown rem… Continue reading Getting a couple of remote login and calls into Ubuntu server?
While running a VPS for shared hosting, I put the data for the various users and websites as /var/www/[USER]/public_html/[DOMAIN]/…. I’d like to make sure that one user cannot access data from another user. I run NGINX + PHP-FPM on CentO… Continue reading Prevent read access to other users’ files using SELinux
I am running an Ubuntu 20.04 based LEMP server on a Raspberry Pi 4.
I am working on a Wordpress Woocommerce website at https://www.mcmo.is. Currently on iOS using Safari or Google Chrome, I can’t get past the websites Woocommerce checkout … Continue reading Modsecurity Nginx breaks WordPress’s Woocommerce checkout page. Need help finding working rule exclusions [migrated]
I’m studying, but I don’t know how to approach it, please help
Both nginx/1.20.2 php/5.4.16 were written in the header
nmap
80/tcp open http
443/tcp open https
8080/tcp open http-proxy
8443/tcp open https-alt
php.ini
display_errors… Continue reading Vulnerability help in nginx/1.20.2 php/5.4.16 [closed]
I have found an arbitrary file upload vulnerability on a flask application that I was playing with that essentially allows me to append to any file (and create new ones) in the file system. The code that causes the vulnerability boils down… Continue reading Arbitrary File Upload Vulnerability