I have come across a security issue on a linux web server. If someone enters the following in the address bar of a web browser:
They can view this file. I have since removed the web server from public access. The php script was internally created to be a helpdesk support site. What can be done to the server to make sure no one can call this command and view other directories on the server?