Linux-Server-Management-Toolkit/lib at 551e32444c140d0947e0b6f97a2cab98ab89e370 - Linux-Server-Management-Toolkit - My Personal Collection

cschantz/Linux-Server-Management-Toolkit

Files

T

History

Developer 8fc31b6c3a CRITICAL SECURITY FIXES: Address comprehensive audit findings

SECURITY FIXES:
1. Remove unsafe eval() function (launcher.sh:88-99)
   - eval() function removed entirely (was a code injection risk)
   - Function was unused but posed security liability

2. Fix SQL injection in database queries (reference-db.sh:225-229)
   - Properly escape single quotes in database names
   - Changed from incorrect backtick escaping to proper SQL escaping
   - Database names now safely used in WHERE clauses

3. Fix credential exposure (reference-db.sh:199-235)
   - MYSQL_PWD no longer exported (visible to child processes)
   - Password kept in local variable only
   - Set MYSQL_PWD only for individual mysql commands
   - Credentials immediately unset after use
   - Password never visible in 'ps aux' or /proc/environ

4. Refactored database queries
   - Each mysql command gets password set independently
   - Uses here-string (<<<) instead of process substitution for safety
   - Proper error handling per query

All critical vulnerabilities addressed
Syntax validation: PASS

2026-03-19 21:04:28 -04:00

..

attack-patterns.sh

CRITICAL: Fix massive false positives causing Score:100 on legitimate traffic

2026-01-06 18:47:35 -05:00

attack-signatures.sh

Add missing function exports to library files

2026-01-02 16:23:17 -05:00

bot-signatures.sh

Security Intelligence Suite - Complete Overhaul

2025-11-13 23:01:13 -05:00

common-functions.sh

Phase 2 Improvements: Array safety, URL encoding, and source guards

2026-03-19 20:46:39 -04:00

domain-discovery.sh

Fix ESCAPE issues in multiple library files

2026-01-09 16:38:55 -05:00

email-functions.sh

Fix ESCAPE issues in multiple library files

2026-01-09 16:38:55 -05:00

http-attack-analyzer.sh

Fix HIGH priority issues: library exit, unquoted paths, and globs

2026-01-02 16:39:57 -05:00

ip-reputation.sh

Fix ESCAPE issues in IP reputation and user manager

2026-01-09 16:23:17 -05:00

mysql-analyzer.sh

Fix subshell shadowing in mysql-analyzer.sh

2026-02-07 02:20:45 -05:00

php-action-executor.sh

Fix find_fpm_pool_config to work properly on cPanel

2026-02-18 17:30:32 -05:00

php-analytics.sh

Complete profile-based PHP-FPM optimization system with real usage data

2026-02-18 19:40:01 -05:00

php-analyzer.sh

Fix critical bugs and add domain-by-domain batch analyzer

2026-02-17 22:43:49 -05:00

php-calculator-improved.sh

Fix critical bug: never recommend 0 for pm.max_children in batch analyzer

2026-02-18 22:13:25 -05:00

php-config-manager.sh

Fix ESCAPE issues in multiple library files

2026-01-09 16:38:55 -05:00

php-detector.sh

Fix ESCAPE issues in multiple library files

2026-01-09 16:38:55 -05:00

php-scanner.sh

Fix broken traffic analysis functions in php-scanner.sh

2026-02-18 17:27:58 -05:00

php-server-manager.sh

Fix critical bugs and add domain-by-domain batch analyzer

2026-02-17 22:43:49 -05:00

php-ui.sh

Fix critical bugs and add domain-by-domain batch analyzer

2026-02-17 22:43:49 -05:00

plesk-helpers.sh

Fix SOURCE command safety issues (HIGH priority)

2026-01-02 17:26:21 -05:00

rate-anomaly-detector.sh

Fix remaining ESCAPE issues in rate anomaly detector

2026-01-09 16:28:28 -05:00

reference-db.sh

CRITICAL SECURITY FIXES: Address comprehensive audit findings

2026-03-19 21:04:28 -04:00

system-detect.sh

Phase 2 Improvements: Array safety, URL encoding, and source guards

2026-03-19 20:46:39 -04:00

threat-intelligence.sh

Fix NET-TIMEOUT issues and improve QA check for false positives

2026-02-10 22:34:45 -05:00

user-manager.sh

Fix ESCAPE issues in multiple library files

2026-01-09 16:38:55 -05:00