Cancelled

Security Audit/Cleanse

Job entails a security expert to analyze as needed up to 4 sites on a shared webhosting account. One oscommerce site is generating an iframe injection to the index file after the first body tag on an irregular basis for around 3-4 weeks. No other sites are affected, but as all four sites are on the same account, any of the sites very well may be hosting the file, code generating the injection, or vulnerability leading to the attack. The webhost cannot find the file or code as all files appear clean, no permission errors, ect. Log files do not assist in the matter. This is NOT a matter of ftp attack or stolen passwords at we have a strick ftp allow and deny that allows only our ip to access ftp. Sites on server include two wordpress sites and two oscommerce sites. The oscommerce site in question is heavily modified.

We are NOT in need of someone removing the actual iframe injection as it is easily spotted and removed by our team.

The audit is NOT to inhibit the use of the sites by customers. If you need to copy the sites to a closed system, bidder will be expected to do so. We expect the total downtime to the site as a result of modifications to be a matter of minutes, not days or hours. NO modifications, uploads, or file deletions should be enacted until authorized by our project manager.

The iframe injection problem is what we expect the bidder to isolate. If this is a shell script, modified code, xss attack, ect this should be completed first in regards to the iframe injection. Several oscommerce security patches are enabled on the oscommerce sites including Security Pro, SiteMonitor, htaccess protection, Anti XSS.

The iframe injection links appear to be outdated as the links end up redirecting to the actual Google homepage, not a spoof page. PMB for iframe code being injected.

Do not bid if you cannot finish the iframe problem within five days (or less). Do not bid if this is your first project on freelancer.

Winning bidder agrees to receive two escrow payments to be released in line with completion of project. The first payment for finding, isolating, and fixing the iframe injection problem, whatever it may be. The second to verify changes have worked, we will hold the second escrow for a week after completion, and release as long as the site is without an iframe attack. The payments will be split 50/50. Obviously if the injection persists the job will be considered incomplete and the second payment will not be released until a week has persisted without attack.

The winning bidder amount will be split into two payments. For example: If you bid $500, it will be two escrows of $250.

Taidot: OSCommerce, Shell Script, Ostoskärryt, Verkkoturva, WordPress

Näytä lisää: win2k3 security audit, security audit linux dedicated server, linux security audit, joomla security audit, security audit freelancer, average price security audit, night audit asp job, scriptserver security audit fix, linux server security audit, company security audit, job description bowling pro shop, jobs website security audit, perfrom website security audit, php script security audit, rfp rfq tender penetration testing vulnerability assessment security testing security audit application security website securit, security audit money, web security audit, security audit website, security audit joomla, windows security audit tool

Tietoa työnantajasta:
( 20 arvostelua ) Indianapolis, United States

Projektin tunnus: #662693

10 freelanceria on tarjonnut keskimäärin %project_bid_stats_avg_sub_26% %project_currencyDetails_sign_sub_27% tähän työhön

tuxadmin

Hi, see my profile, thank you.

$250 USD 7 päivässä
(142 arvostelua)
6.6
crajeshbe

Hi Good day, Web hacker Bid. Expert in testing and securing website and server against hacking. And having extensive knowledge in iframe injection. Please check ur inbox for more details. Regards [login to view URL] B.E

$500 USD 4 päivässä
(23 arvostelua)
5.2
ARNLWEB

Hi, please view pmb for details, thank you.

$300 USD 5 päivässä
(19 arvostelua)
4.4
Maxillus

Please Read PMB.

$250 USD 10 päivässä
(10 arvostelua)
4.2
softcom

I can help you with your problem, please check PMB.

$250 USD 1 päivässä
(12 arvostelua)
4.2
slk

Please see PMB.

$250 USD 4 päivässä
(12 arvostelua)
3.6
EranAharoni

Hello sir ,please check P.M.B thanks

$250 USD 3 päivässä
(2 arvostelua)
2.2
sxi

Hi Nic, I'd like to bid on your new project. I can have the account and all sites audited this week with all work carried out on a secure closed system as discussed in the previous project. You should be able to see Lisää

$500 USD 5 päivässä
(2 arvostelua)
2.3
crashus3

Hello, I believe we can log everything out on another server and check what the problem is, I am sure I can handle this. PM me for any questions.

$300 USD 4 päivässä
(0 arvostelua)
0.0
backstage

Let it be done by pro

$1500 USD 2 päivässä
(0 arvostelua)
0.0