?????????????????????????????????????????в??????????????′?????????????Linux?????????????÷????????????????????

???????Web Server????Nginx?????

????1?????????????????????????????????????????fpm?????????????????Ч????

????2?????????include???????????????????У?Nginx????????

????3??path_info?????????

??????nginx??????????????

if ($request_filename ~* (.*).php) {
set $php_url $1;
??       ??}
if (!-e $php_url.php) {
return 404;
   ??}

????4?????±???Web Server??????Server???

????5????????????????????????????????IP??????????

??????????????????????????д??

find -type f -name *.php -exec chmod 444 {} ;
find -type d -exec chmod 555 {} ;

??????????????????????????????

???????y??chmod????????????????chmod?????????????????????????

????????PHP????

???????php.ini?????????????Σ???????

disable_funcions = dl??eval??exec??passthru??system??popen??shell_exec??proc_open??
proc_terminate??curl_exec??curl_multi_exec??show_source??touch??
escapeshellcmd??escapeshellarg

???????MySQL????????????

???????mysql??????????????????root??????????????????????????????????Web????

?????塢???????????

grep -r –include=*.php  ‘[^a-z]eval($_POST’ . > grep.txt
grep -r –include=*.php  ‘file_put_contents(.*$_POST[.*]);’ . > grep.txt

?????????????д???????????????????????????????????????????????б???????????????????????????????????????????????????δ??????

?????????2?????????????

find -mtime -2 -type f -name *.php

????????????????????touch????????????????????????????????????touch??????

?????????????Linux????Web????????????????