Symlink Protection

peter123

• November 20, 2016 07:15

Hi All, I have just installed cPanel on a CentOS 7 server, and enabled mod_ruid2 through EA4. I also disabled all shell access for all users. May I know what else I need to do for symlink protection? Thanks!

• 

  Infopro

  • November 20, 2016 13:32

  This thread may be of some use to you: EasyApache4 symlink race protection

  0
• 

  peter123

  • November 21, 2016 06:23

  Thanks for your reply! For the filesystem-level solution, can I use "mod_ruid2 + noshell" instead of "mod_ruid2 + jailshell"? My customers do not need shell access so I prefer to disable it if disabling it give same level of protection.

  0
• 

  cPanelMichael

  • November 23, 2016 17:55

  Hello, You may also find this document helpful: Symlink Race Condition Protection - EasyApache 4 - cPanel Documentation I recommend using one of the kernel-level solutions if possible. Otherwise, note that enabling EXPERIMENTAL: Jailshell Virtual Hosts using mod_ruid2 and cPanel jailshell in WHM's

  0

Please sign in to leave a comment.