cPanel Kernel Installed and symlink attack still used

CanSpace

• May 04, 2017 07:35

We have the cPanel-hardened kernel installed on all of our servers. It was our understanding that this was all that was necessary to prevent against symlink attacks. We are using mod_ruid2, and after installing this kernel we disabled the "experimental jailshell" tweak as we found this was leading to an unstable Apache configuration. We also uninstalled any symlink protection via EasyApache4 as it was our understanding (

• 

  cPanelMichael

  • May 04, 2017 15:53

  Hello @CanSpace, I see that ticket number 8431169 is open to request further clarification about what actually happened, and to determine if the cPanel-Hardened Kernel should have prevented it. I'll update this thread with the outcome of the support ticket once it's answered. Thank you.

  0

Please sign in to leave a comment.