Please note: Virtuozzo® and OpenVZ servers do not support this feature.
Introduction
In this article, we are going to discuss how to secure your /tmp partition to help maintain a more secure server.
Procedure
Information on securing the /tmp partition can be found below, or by reading our documentation on this, here.
For the most security, cPanel does suggest having a separate /tmp partition. It is also suggested that you mount the /tmp partition with the nosuid option. Once cPanel & WHM is installed properly, you can set for the /tmp partition to also use the noexec mount option.
cPanel & WHM also offers a built-in script that maximizes the security of this partition. This is done by mounting your /tmp partition to a temporary file for extra security. You can run the script with the command below:
/usr/local/cpanel/scripts/securetmp
We strongly recommend that you do not disable the /usr/local/cpanel/scripts/securetmp script. However, if you do require disabling this script, more information can be mentioned in the documentation provided above.