any one tell me what is shell script and what it is use for ? i have in linux web hosting and my website have php files in that and my site attacked many times with malware and block by google did you thing it have some thing to do what shell script ???
A shell script is a script written for the shell, or command line interpreter, of an operating system. It is often considered a simple domain-specific programming language. Typical operations performed by shell scripts include file manipulation, program execution, and printing text. Many shell script interpreters double as command line interface, such as the various Unix shells, Windows PowerShell or the MS-DOS COMMAND.COM. Others, such as AppleScript or the graphical Windows Script Host (WScript.exe), add scripting capability to computing environments without requiring a command line interface. Other examples of programming languages primarily intended for shell scripting include DCL and JCL...
Hey, what chrisy provided is half right. We call all scripts that we in the industry write to automate our jobs on *nix boxs shell scripts. I believe this may be what your referring to:
A majority of shell scripts like r57 / c99 tend to pop up alot on my servers but I am protected from them for disabling certain functions, since these scripts are mainly used by hackers to try to gain access to your server / send out spam or deface your site.
Shellcode; If you are running PHP scripts, you may have RFI vulnerabilities depending on if your script(s) are vulnerable and/or you have not disabled essential functions which are vulnerable to attack. RFI - Remote File Inclusion. Allows an attacker to get your insecure php file, to upload some of his own code - e.g c99 shell shown above. The shell then allows the attacker to gain passwd files, backups of DB's, apply more malicious code to gain more access. Ensure all your php files have the correct ownership and permissions. Disable un-required php functions in servers php.ini. Apply the recommended apache server security mods - e.g suphp, mod_security.
I assume one of the ways you used is enabling Safe Mode? Still, some hackers by some ways succeed in bypassing Safe Mode. Be careful.