Не открывается шелл wso на joomla

Discussion in 'Песочница' started by dragondragon, 27 Aug 2015.

  1. dragondragon

    dragondragon Member

    Joined:
    8 May 2013
    Messages:
    73
    Likes Received:
    11
    Reputations:
    0
    залил на джумлу но при переходе на страницу пишет страницы не существует
    я так понимаю нужно удалить что то из хтассесс но что именно мешает?

    ##### RewriteEngine enabled - BEGIN
    RewriteEngine On
    ##### RewriteEngine enabled - END

    ##### RewriteBase set - BEGIN
    RewriteBase /
    ##### RewriteBase set - END

    ##### File execution order -- BEGIN
    #DirectoryIndex index.php index.html
    ##### File execution order -- END

    ##### No directory listings -- BEGIN
    #IndexIgnore *
    #Options -Indexes
    ##### No directory listings -- END

    ##### Redirect index.php to / -- BEGIN
    RewriteCond %{THE_REQUEST} !^POST
    RewriteCond %{THE_REQUEST} ^[A-Z]{3,9}\ /index\.php\ HTTP/
    RewriteCond %{SERVER_PORT}>s ^(443>(s)|[0-9]+>s)$
    RewriteRule ^index\.php$ http%2://www.mail.ru/ [R=301,L]
    ##### Redirect index.php to / -- END
    ##### Rewrite rules to block out some common exploits -- BEGIN
    RewriteCond %{QUERY_STRING} proc/self/environ [OR]
    RewriteCond %{QUERY_STRING} mosConfig_[a-zA-Z_]{1,21}(=|\%3D) [OR]
    RewriteCond %{QUERY_STRING} base64_(en|de)code\(.*\) [OR]
    RewriteCond %{QUERY_STRING} (<|%3C).*script.*(>|%3E) [NC,OR]
    RewriteCond %{QUERY_STRING} GLOBALS(=|\[|\%[0-9A-Z]{0,2}) [OR]
    RewriteCond %{QUERY_STRING} _REQUEST(=|\[|\%[0-9A-Z]{0,2})
    RewriteRule .* index.php [F]
    ##### Rewrite rules to block out some common exploits -- END
    ##### File injection protection -- BEGIN
    RewriteCond %{REQUEST_METHOD} GET
    RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=http:// [OR]
    RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=(\.\.//?)+ [OR]
    RewriteCond %{QUERY_STRING} [a-zA-Z0-9_]=/([a-z0-9_.]//?)+ [NC]
    RewriteRule .* - [F]
    ##### File injection protection -- END

    ##### Advanced server protection rules exceptions -- BEGIN
    RewriteRule ^administrator\/components\/com_akeeba\/restore\.php$ - [L]
    RewriteRule ^administrator\/components\/com_admintools\/restore\.php$ - [L]
    RewriteRule ^administrator\/components\/com_joomlaupdate\/restore\.php$ - [L]
    RewriteRule ^templates\/your_template_name_here/ - [L]
    ##### Advanced server protection rules exceptions -- END

    ##### Advanced server protection -- BEGIN

    RewriteCond %{QUERY_STRING} \=PHP[a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12} [NC]
    RewriteRule .* - [F]
    ## Back-end protection
    RewriteRule ^administrator/?$ - [L]
    RewriteRule ^administrator/index\.(php|html?)$ - [L]
    RewriteRule ^administrator/index[23]\.php$ - [L]
    RewriteRule ^administrator/(components|modules|templates|images|plugins)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|htm|ttf|woff|eot|JPG|JPEG|PNG|GIF|CSS|JS|TTF|WOFF|EOT)$ - [L]
    RewriteRule ^administrator/ - [F]
    ## Allow limited access for certain Joomla! system directories with client-accessible content
    RewriteRule ^(components|modules|templates|images|plugins|media|libraries|media/jui/fonts|cache)/.*\.(jpe|jpg|jpeg|jp2|jpe2|png|gif|bmp|css|js|swf|html|mpg|mp3|mpeg|mp4|avi|wav|ogg|ogv|xls|xlsx|doc|docx|ppt|pptx|zip|rar|pdf|xps|txt|7z|svg|odt|ods|odp|flv|mov|ico|htm|ttf|woff|eot|JPG|JPEG|PNG|GIF|CSS|JS|TTF|WOFF|EOT)$ - [L]
    RewriteRule ^(components|modules|templates|images|plugins|media|libraries|media/jui/fonts|cache)/ - [F]
    ## Disallow front-end access for certain Joomla! system directories (unless access to their files is allowed above)
    RewriteRule ^includes/js/ - [L]
    RewriteRule ^(cache|includes|language|logs|log|tmp)/ - [F]
    RewriteRule ^(configuration\.php|CONTRIBUTING\.md|htaccess\.txt|joomla\.xml|LICENSE\.txt|phpunit\.xml|README\.txt|web\.config\.txt) - [F]

    ## Disallow access to rogue PHP files throughout the site, unless they are explicitly allowed
    RewriteCond %{REQUEST_FILENAME} (\.php)$
    RewriteCond %{REQUEST_FILENAME} !(/index[23]?\.php)$
    RewriteCond %{REQUEST_FILENAME} -f
    RewriteRule (.*\.php)$ - [F]
    ## Disallow access to htaccess.txt, php.ini and configuration.php-dist
    RewriteRule ^(htaccess\.txt|configuration\.php-dist|php\.ini)$ - [F]
    ##### Advanced server protection -- END

    ##### Joomla! core SEF Section -- BEGIN
    RewriteRule .* - [E=HTTP_AUTHORIZATION:%{HTTP:Authorization}]
    RewriteCond %{REQUEST_URI} !^/index\.php
    RewriteCond %{REQUEST_FILENAME} !-f
    RewriteCond %{REQUEST_FILENAME} !-d
    RewriteRule .* index.php [L]
    ##### Joomla! core SEF Section -- END
     
    #1 dragondragon, 27 Aug 2015
  2. GR1z

    GR1z Banned

    Joined:
    9 Jul 2007
    Messages:
    54
    Likes Received:
    18
    Reputations:
    0
    напиши в лс,помогу.
     
    #2 GR1z, 28 Aug 2015
  3. winstrool

    winstrool ~~*MasterBlind*~~

    Joined:
    6 Mar 2007
    Messages:
    1,399
    Likes Received:
    883
    Reputations:
    859
    расширение шелла на phtml в индексе не пробывал?
     
    _________________________
    #3 winstrool, 7 Sep 2015
(You must log in or sign up to post here.)