[2 days left] What’s wrong with your cloud strategy? Learn why multicloud solutions matter with Nimble Storage.Register Now

x
?
Solved

symbolic links fright

Posted on 2009-05-14
6
Medium Priority
?
456 Views
Last Modified: 2013-11-30
Hello

the cpanel allow to manage symbolic link via fiale manager edit, show content , extract files content symbolic links files ... etc

this can cause hacking , I hope to some one help to disallow all operations on symbolic links in cpanel and make symbolic links files as files disabled or not allow

thank you very much
0
Comment
Question by:xserverx
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 43

Expert Comment

by:ravenpl
ID: 24392851
I don't know the cpanel, but You can disable symlinks with .htaccess

Options -AllowSymLinks

the downside is the mod_rewrite requires it - will stop working if symlinks are disabled.
0
 
LVL 40

Accepted Solution

by:
noci earned 1000 total points
ID: 24392913
I think you need to readup on SElinux policies to pull this off.
And deny certain things to be done.
See more:
http://en.wikipedia.org/wiki/Selinux
0
 

Author Comment

by:xserverx
ID: 24397241
ravenpl: mod_rewrite work behind Options -AllowSymLinks

SElinux : dowsn't work with cpanel

help please :(
0
Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

 
LVL 43

Expert Comment

by:ravenpl
ID: 24398938
> ravenpl: mod_rewrite work behind Options -AllowSymLinks
It's required by mod rewrite used in .htaccess

Anyway, what You expect - apache to ignore symlinks, or Linux to disable creation of symlinks?
0
 

Author Comment

by:xserverx
ID: 24400373
I think you are talking about FllowSymLinks not AllowSymLinks
the mod rewrite work without FllowSymLinks

in Linux anyone can create symbolic links to specifics files from their computer then compress as tar.gz , from cpanel its possible to extract this archive so symbolic link work fine in cpanel he can edit the target file via file manager editor and download the file ... etc (cpanel doesn't work behind apache for we can stop this matter with Options -FllowSymLinks ).

what is the solution here , is it possible for example to reconfigure cpsrvd for control symbolic links , or what can we doing to stop this ?


0
 

Author Closing Comment

by:xserverx
ID: 31581525
thank you
0

Featured Post

Plesk WordPress Toolkit

Plesk's WordPress Toolkit allows server administrators, resellers and customers to manage their WordPress instances, enabling a variety of development workflows for WordPress admins of all skill levels, from beginners to pros.

See why 2/3 of Plesk servers use it.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In part one, we reviewed the prerequisites required for installing SQL Server vNext. In this part we will explore how to install Microsoft's SQL Server on Ubuntu 16.04.
This article will show how Aten was able to supply easy management and control for Artear's video walls and wide range display configurations of their newsroom.
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…
Suggested Courses
Course of the Month13 days, 13 hours left to enroll

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question