Merhabalar,
\nBug\u00fcn bilgi bankam\u0131ze ekleyece\u011fimiz makalemiz cxs kurulumu ve yap\u0131land\u0131rmas\u0131 \u00fczerine olacakt\u0131r.<\/p>\n
ConfigServer eXploit Taray\u0131c\u0131 (CXS), bir cPanel sunucusunda k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m alg\u0131lama ve kald\u0131rma konusunda harika bir ara\u00e7t\u0131r. CXS\u2019in canl\u0131 tarama kabiliyeti ve geni\u015f veritaban\u0131, k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlara kar\u015f\u0131 %99 oran\u0131nda kalkan g\u00f6revi \u00fcstlenmektedir. Cxs \u00f6m\u00fcr boyu 60$ lisans \u00fccreti bulunmaktad\u0131r.Bu yaz\u0131da, CXS\u2019yi cPanel sunucular\u0131na nas\u0131l kuraca\u011f\u0131n\u0131z\u0131 ve yap\u0131land\u0131raca\u011f\u0131n\u0131z\u0131 anlataca\u011f\u0131z.<\/p>\n
Lisans al\u0131m i\u015flemleri tamamland\u0131ktan sonra kurulum ve yap\u0131land\u0131rmalara ge\u00e7elim<\/p>\n
1. Ad\u0131m<\/p>\n
wget https:\/\/download.configserver.com\/cxsinstaller.tgz<\/pre>\n2. Ad\u0131m<\/p>\n
wget https:\/\/download.configserver.com\/cxsinstaller.tgz<\/a><\/pre>\n3. Ad\u0131m<\/p>\n
tar -xzf cxsinstaller.tgz<\/pre>\n4. Ad\u0131m<\/p>\n
perl cxsinstaller.pl<\/pre>\n5. Ad\u0131m<\/p>\n
cxs --qcreate --quarantine \/etc\/cxs\/quarantine<\/pre>\n6. Ad\u0131m cxswatch.sh dosyas\u0131n\u0131 d\u00fczenleyelim<\/p>\n
#!\/bin\/sh\r\n###############################################################################\r\n# Copyright 2009-2015, Way to the Web Limited\r\n###############################################################################\r\n# The option --Wstart MUST be used on the cxs command line here\r\n#\r\n# Examples (only use ONE line for cxs scanning):\r\n#\/usr\/sbin\/cxs --Wstart --allusers --mail root\r\n#\/usr\/sbin\/cxs --Wstart --allusers --www --mail root --quarantine \/home\/safe\/ --qoptions Mv --Wadd \/etc\/cxs\/cxs.wadd\r\n#\r\n# We would recommend using --qoptions Mv initially if you use --quarantine\r\n# otherwise you might find cxs quarantining files that you do not want to.\r\n# For example, you probably do NOT want to quarantine all script files (T)!\r\n#\r\n\r\n\/usr\/sbin\/cxs --options -wW --Wstart --allusers --www --smtp --ignore \/etc\/cxs\/cxs.ignore --qoptions Mv --quarantine \/etc\/cxs\/quarantine --log \/var\/log\/cxs.log --Wmaxchild 3 --Wloglevel 0 --Wsleep 3 --filemax 0 --Wrateignore 300<\/pre>\n7. Ad\u0131m cxsftp.sh dosyas\u0131n\u0131 d\u00fczenleyelim<\/p>\n
#!\/bin\/sh\r\n###############################################################################\r\n# Copyright 2009-2015, Way to the Web Limited\r\n###############################################################################\r\n# The option --ftp MUST be used on the cxs command line here\r\n#\r\n# Examples (only use ONE line for cxs scanning):\r\n#\/usr\/sbin\/cxs --quiet --ftp --mail root \"$1\"\r\n#\/usr\/sbin\/cxs --quiet --ftp --mail root --quarantine \/home\/safe\/ \"$1\"\r\n#\/usr\/sbin\/cxs --quiet --ftp --mail root --quarantine \/home\/safe\/ --block \"$1\"\r\n#\/usr\/sbin\/cxs --quiet --ftp --logfile \/var\/log\/cxs.log \"$1\"\r\n#\r\n# If you use --logfile, remember to chmod 666 [file] to allow write access\r\n\r\n\/usr\/sbin\/cxs --quiet --ftp --quarantine \/etc\/cxs\/quarantine --logfile \/var\/log\/cxs.log --mail yourname@youremail.com<\/a><\/span> \"$1\"<\/pre>\n8. Ad\u0131m cxsdaily.sh dosyas\u0131n\u0131 d\u00fczenleyelim<\/p>\n
#!\/bin\/sh\r\n###############################################################################\r\n# Copyright 2009-2015, Way to the Web Limited\r\n###############################################################################\r\n# Run this script via cron daily\r\n\r\n# Daily update of cxs and\/or fingerprint definitions\r\n\/usr\/sbin\/cxs --upgrade --quiet\r\n\r\n# Daily cleanup of quarantine if used. Modify to specify your quarantine\r\n# directory and duplicate if you use more than one.\r\n#\r\n# Set --qclean to the number of days to retain, e.g. 7 = one week\r\n\/usr\/sbin\/cxs --qclean 7 --quarantine \/etc\/cxs\/quarantine --quiet<\/pre>\n9. Ad\u0131m clamav y\u00fckleyelim<\/p>\n
\/scripts\/update_local_rpm_versions --edit target_settings.clamav installed\/scripts\/check_cpanel_rpms --fix --targets=clamav<\/pre>\n10. Ad\u0131m cxs i\u00e7in log dosyas\u0131 olu\u015ftural\u0131m<\/p>\n
touch \/var\/log\/cxs.logchmod 630 \/var\/log\/cxs.log<\/pre>\n11. Ad\u0131m pure-ftp dosyas\u0131n\u0131 d\u00fczenleyelim<\/p>\n
vi \/etc\/pure-ftpd.conffind #CallUploadScript and change to CallUploadScript (remove comment)service pure-ftpd restartservice pure-uploadscript restart<\/a><\/pre>\n12. Ad\u0131m mod_security d\u00fczenleyelim<\/p>\n
\/scripts\/modsec_vendor add https:\/\/download.configserver.com\/waf\/meta_configserver.yaml\/scripts\/modsec_vendor enable configserverservice httpd restart<\/pre>\n13. Ad\u0131m symlink olu\u015ftural\u0131m<\/p>\n
ln -s \/etc\/cxs\/cxsdaily.sh \/etc\/cron.daily\/<\/pre>\n14. Ad\u0131m<\/p>\n
nano -w \/etc\/cron.d\/daily-cxs<\/pre>\n15. Ad\u0131m yukar\u0131da a\u00e7m\u0131\u015f oldu\u011fumuz dosyan\u0131n i\u00e7erisine a\u015fa\u011f\u0131daki komutlar\u0131 girelim<\/p>\n
0 4 * * * root \/usr\/sbin\/cxs --logfile \/var\/log\/cxs.log --mail yourname@youremail.com --exploitscan --virusscan --sversionscan --bayes -I \/etc\/cxs\/cxs.ignore -Q \/etc\/cxs\/quarantine --options mMOLfSGchexdnwZRD --voptions mfuhexT --qoptions Mv -Z --www --summary --html --ssl -C \/var\/clamd --nofallback -T 5 --ctime 48 --allusers --quiet<\/pre>\n16. Ad\u0131m cxs servisini ba\u015flatal\u0131m<\/p>\n
service cxswatch startchkconfig cxswatch on<\/pre>\nT\u00fcm i\u015flemler bu kadar. G\u00fcvenli ve bol trafikli g\u00fcnler<\/p>\n","protected":false},"excerpt":{"rendered":"
Merhabalar, Bug\u00fcn bilgi bankam\u0131ze ekleyece\u011fimiz makalemiz cxs kurulumu ve yap\u0131land\u0131rmas\u0131 \u00fczerine olacakt\u0131r. CXS \u2013 ConfigServer eXploit Scanner (CXS) Nedir ? ConfigServer eXploit Taray\u0131c\u0131 (CXS), bir cPanel sunucusunda k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131m alg\u0131lama ve kald\u0131rma konusunda harika bir ara\u00e7t\u0131r. CXS\u2019in canl\u0131 tarama kabiliyeti ve geni\u015f veritaban\u0131, k\u00f6t\u00fc ama\u00e7l\u0131 yaz\u0131l\u0131mlara kar\u015f\u0131 %99 oran\u0131nda kalkan g\u00f6revi \u00fcstlenmektedir. Cxs \u00f6m\u00fcr …<\/p>\n","protected":false},"author":1,"featured_media":1444,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[7],"tags":[],"class_list":["post-4861","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cpanel"],"acf":[],"_links":{"self":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/4861","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/comments?post=4861"}],"version-history":[{"count":0,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/4861\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media\/1444"}],"wp:attachment":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media?parent=4861"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/categories?post=4861"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/tags?post=4861"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}