1¡¢·ÀÖ¹Ìø³öwebĿ¼ £¨ÑÏÖزÉÓã©
¡¡¡¡Ê×ÏÈÐÞ¸Ähttpd.conf£¬Èç¹ûÄãÖ»ÔÊÐíÄãµÄphp½Å±¾³ÌÐòÔÚwebĿ¼Àï²Ù×÷£¬»¹¿ÉÒÔÐÞ¸Ähttpd.confÎļþÏÞÖÆphpµÄ²Ù×÷·¾¶¡£±ÈÈçÄãµÄwebĿ¼ÊÇ/usr/local/apache/htdocs£¬ÄÇôÔÚhttpd.confÀï¼ÓÉÏÕâô¼¸ÐУº
¡¡¡¡php_admin_value open_basedir /usr/local/apache/htdocs
¡¡¡¡ÕâÑù£¬Èç¹û½Å±¾Òª¶ÁÈ¡/usr/local/apache/htdocsÒÔÍâµÄÎļþ½«²»»á±»ÔÊÐí£¬Èç¹û´íÎóÏÔʾ´ò¿ªµÄ»°»áÌáʾÕâÑùµÄ´íÎó£º
¡¡¡¡Warning: open_basedir restriction in effect. File is in wrong directory in /usr/local/apache/htdocs/open.php on line 4 µÈµÈ¡£
Èç¹ûÓжà¸ö»ùÓÚÓòÃûµÄÐéÄâÖ÷»ú
<VirtualHost *>
ServerName www.test1.com
DocumentRoot /usr/local/apache/htdocs/test1
<Directory /usr/local/apache/htdocs/test1>
php_admin_value open_basedir /usr/local/apache/htdocs/test1
</Directory>
</VirtualHost>
×¢Òâ:ÔÚphp_admin_value open_basedir±ðÍüÁ˼ÓÉÏphp.iniÖÐÖ¸¶¨µÄPHPÁÙʱÉÏ´«Ä¿Â¼ºÍsession±£´æĿ¼£¬²»È»»áÎÞ·¨ÉÏ´«Îļþ¡¢´æÈ¡session
php.iniÖа´ÈçÏÂÅäÖãº
upload_tmp_dir = "/tmp"
session.save_path = "/var/phpsession"
¡¡¡¡2¡¢·ÀÖ¹phpľÂíÖ´ÐÐwebshell £¨ÑÏÖزÉÓã©
¡¡¡¡´ò¿ªsafe_mode£¬
¡¡¡¡ÔÚ£¬php.iniÖÐÉèÖÃ
¡¡¡¡disable_functions= passthru£¬exec£¬shell_exec£¬system
¡¡¡¡¶þÕßÑ¡Ò»¼´¿É£¬Ò²¿É¶¼Ñ¡
¡¡¡¡3¡¢·ÀÖ¹phpľÂí¶ÁдÎļþĿ¼ £¨ºÃÏñûÓÐÒªÇóÕâôÑϸñ,²»ÍƼö²ÉÓᣣ©
¡¡¡¡ÔÚphp.iniÖеÄ
¡¡¡¡disable_functions= passthru£¬exec£¬shell_exec£¬system
¡¡¡¡ºóÃæ¼ÓÉÏphp´¦ÀíÎļþµÄº¯Êý
¡¡¡¡Ö÷ÒªÓÐ
¡¡¡¡fopen£¬mkdir£¬rmdir£¬chmod£¬unlink£¬dir
¡¡¡¡fopen£¬fread£¬fclose£¬fwrite£¬file_exists
¡¡¡¡closedir£¬is_dir£¬readdir.opendir
¡¡¡¡fileperms.copy£¬unlink£¬delfile
¡¡¡¡¼´³ÉΪ
¡¡¡¡disable_functions= passthru£¬exec£¬shell_exec£¬system£¬fopen£¬mkdir£¬rmdir£¬chmod£¬unlink£¬dir
¡¡¡¡£¬fopen£¬fread£¬fclose£¬fwrite£¬file_exists
¡¡¡¡£¬closedir£¬is_dir£¬readdir.opendir
¡¡¡¡£¬fileperms.copy£¬unlink£¬delfile
¡¡¡¡ok£¬´ó¹¦¸æ³É£¬phpľÂíÄÃÎÒÃÇûÕÞÁË.
//»Ø³µ£º[\n\r\t]
$reg="|typeid=\"(.*)\" onsel.*[\n\r\t]*<a href="\" mce_href="\""#\">(.*)</a>|";
preg_match_all ($reg,
$html,
$out, PREG_PATTERN_ORDER);
foreach ($out as $value){
foreach ($value as $value2){
if(strlen($value2)<20)
echo ($value2."<br>");
}
} ......
