10 Things you can do to protect file uploads via PHP on your Linux / Apache web server

This small list of upload protections is geared towards a LAMP environment (Linux Apache Mysql PHP). Each web server and or language will have similar traits, but the tips listed below may not apply depending on your situation. 1. Don’t allow uploads. Sorry, that I even need to say this, but if your application doesn’t… Continue reading 10 Things you can do to protect file uploads via PHP on your Linux / Apache web server

OpenSSH and istate error on rsync/scp resolved

Ah, so today the openssh/istate error relating with the rsync/scp is now resolved. The Gentoo folks were able to roll in 4.6_p1-r4 into portage. It’s not ‘stable’ so you’re going to need to use the x86 keyword (depending on your arch). Or you can simply add this version to /etc/portage/package.keywords =net-misc/openssh-4.6_p1-r4 ~x86 Here is the… Continue reading OpenSSH and istate error on rsync/scp resolved

Updates for OpenSSH

Looks like they fixed the LDAP requirement bug in with p1-r3. This was related if you had a ldap as a USE flag. You would see an error similar to this: !!! ERROR: net-misc/openssh-4.6_p1-r2 failed. Call stack: ebuild.sh, line 1648: Called dyn_setup ebuild.sh, line 714: Called qa_call ‘pkg_setup’ ebuild.sh, line 44: Called pkg_setup openssh-4.6_p1-r2.ebuild, line… Continue reading Updates for OpenSSH

Issues with rsync/OpenSSH this morning

After upgrading to net-misc/openssh-4.6_p1-r2 this morning, I’m starting to see the following messages in the logs. This only seems to appear after rsync/ssh transactions. Aug 3 10:40:03 comp.com sshd[14636]: error: channel 0: chan_read_failed for istate 3 Aug 3 10:40:04 comp.com sshd[14637]: error: channel 0: chan_read_failed for istate 1 Aug 3 10:40:04 comp.com sshd[14637]: error: channel… Continue reading Issues with rsync/OpenSSH this morning