Solved

symbolic links fright

Posted on 2009-05-14
6
444 Views
Last Modified: 2013-11-30
Hello

the cpanel allow to manage symbolic link via fiale manager edit, show content , extract files content symbolic links files ... etc

this can cause hacking , I hope to some one help to disallow all operations on symbolic links in cpanel and make symbolic links files as files disabled or not allow

thank you very much
0
Comment
Question by:xserverx
  • 3
  • 2
6 Comments
 
LVL 43

Expert Comment

by:ravenpl
ID: 24392851
I don't know the cpanel, but You can disable symlinks with .htaccess

Options -AllowSymLinks

the downside is the mod_rewrite requires it - will stop working if symlinks are disabled.
0
 
LVL 40

Accepted Solution

by:
noci earned 500 total points
ID: 24392913
I think you need to readup on SElinux policies to pull this off.
And deny certain things to be done.
See more:
http://en.wikipedia.org/wiki/Selinux
0
 

Author Comment

by:xserverx
ID: 24397241
ravenpl: mod_rewrite work behind Options -AllowSymLinks

SElinux : dowsn't work with cpanel

help please :(
0
Zoho SalesIQ

Hassle-free live chat software re-imagined for business growth. 2 users, always free.

 
LVL 43

Expert Comment

by:ravenpl
ID: 24398938
> ravenpl: mod_rewrite work behind Options -AllowSymLinks
It's required by mod rewrite used in .htaccess

Anyway, what You expect - apache to ignore symlinks, or Linux to disable creation of symlinks?
0
 

Author Comment

by:xserverx
ID: 24400373
I think you are talking about FllowSymLinks not AllowSymLinks
the mod rewrite work without FllowSymLinks

in Linux anyone can create symbolic links to specifics files from their computer then compress as tar.gz , from cpanel its possible to extract this archive so symbolic link work fine in cpanel he can edit the target file via file manager editor and download the file ... etc (cpanel doesn't work behind apache for we can stop this matter with Options -FllowSymLinks ).

what is the solution here , is it possible for example to reconfigure cpsrvd for control symbolic links , or what can we doing to stop this ?


0
 

Author Closing Comment

by:xserverx
ID: 31581525
thank you
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
Meet the world's only “Transparent Cloud™” from Superb Internet Corporation. Now, you can experience firsthand a cloud platform that consistently outperforms Amazon Web Services (AWS), IBM’s Softlayer, and Microsoft’s Azure when it comes to CPU and …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now