|
Home > Archive > Web Servers on Unix and Linux > March 2004 > Help from the Pros: Hack Apache (to learn security)
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Help from the Pros: Hack Apache (to learn security)
|
|
| Phreaky Geek 2004-03-01, 9:34 pm |
| Greetings, I am in a class on computer security at a local major
university. Our next assignment is to hack a webserver (in a
controled environment/network at school). There are two webservers,
an IIS machine and an apache machine. The apache machine has never
been broken (supposedly). Our goal is to be the first.
What tools can you recommend so we can hack these servers. We have
found several tools for IIS (proabably because of its many inherent
weaknesses).. and not so many for apache.
This is in the cause of learning security, and creating more secure
networks/machines.... any tips you can provide would be exteremly
helpful to my group and I.
Many thanks in advance.
| |
| newcastle 2004-03-01, 10:35 pm |
|
Phreaky Geek wrote:
> Greetings, I am in a class on computer security at a local major
> university. Our next assignment is to hack a webserver (in a
> controled environment/network at school). There are two webservers,
> an IIS machine and an apache machine. The apache machine has never
> been broken (supposedly). Our goal is to be the first.
>
> What tools can you recommend so we can hack these servers. We have
> found several tools for IIS (proabably because of its many inherent
> weaknesses).. and not so many for apache.
>
> This is in the cause of learning security, and creating more secure
> networks/machines.... any tips you can provide would be exteremly
> helpful to my group and I.
>
> Many thanks in advance.
Do you have physical or remote access to the servers?
dan
| |
| André Malo 2004-03-02, 2:35 am |
| * phreakygeek@hotmail.com (Phreaky Geek) wrote:
> Greetings, I am in a class on computer security at a local major
> university. Our next assignment is to hack a webserver (in a
> controled environment/network at school). There are two webservers,
> an IIS machine and an apache machine. The apache machine has never
> been broken (supposedly). Our goal is to be the first.
>
> What tools can you recommend so we can hack these servers. We have
> found several tools for IIS (proabably because of its many inherent
> weaknesses).. and not so many for apache.
Brain 1.0.
You've got the code, so use it.
And don't forget to submit newly found weaknesses to
security@httpd.apache.org. Thanks a lot.
nd (x-post to alt.2600 (wtf?) omitted)
| |
| Joe Fischer 2004-03-02, 8:36 pm |
| On 1 Mar 2004 17:36:14 -0800, phreakygeek@hotmail.com (Phreaky Geek)
wrote:
>Greetings, I am in a class on computer security at a local major
>university. Our next assignment is to hack a webserver (in a
>controled environment/network at school). There are two webservers,
>an IIS machine and an apache machine. The apache machine has never
>been broken (supposedly). Our goal is to be the first.
>
>What tools can you recommend so we can hack these servers. We have
>found several tools for IIS (proabably because of its many inherent
>weaknesses).. and not so many for apache.
>
>This is in the cause of learning security, and creating more secure
>networks/machines.... any tips you can provide would be exteremly
>helpful to my group and I.
>
>Many thanks in advance.
Look through the Apache documentation; it states some things
that you should do to run a tight ship - mainly has to do with the
configuration file. Maybe those things will not have been done to
your server, but if they have, you might be in for a tough time. It
is no accident that lots of sites run Apache.
-------
Remove underscores from e-mail address.
| |
| ChiralSoftware 2004-03-11, 1:49 am |
| There are likely to be remaining buffer exploits in Apache, especially if this Apache has ssl enabled. Apache + ssl + mod_ssl = 282713 lines of code in .c files alone. There is almost no way to have that many lines without trouble lurking somewhere. Finding it is not easy, though. One possible way to go about finding it is to explore tools for finding it. There are a whole bunch of memory checking tools, like Electricfence. There is also the language called Cyclone: http://www.cs.cornell.edu/projects/cyclone/ . It is basically a "secure" dialect of C. Maybe your project could be to port some part of ssl or apache to Cyclone. In that process you will uncover areas of risky memory use, and maybe some of them are exploitable. It will be hard work, though, because the Apache codebase is so mature and so many people have been trying this for years.
---------------
http://chiralsoftware.net/hosting-customer.html |
|
|
|
|