LinkBack URL
About LinkBackscpanel apache directory absolutely not locked, although users can not be cross-directory access, users can access other directories, or may be accessed through other webshell directory.
cpanel apache directory
cpanel apache directory absolutely not locked, although users can not be cross-directory access, users can access other directories, or may be accessed through other webshell directory.
It's perfectly normal in a shared hosting environment that users can view some directories and files outside of their web root. It's the responsibility of the server administrator to user linux file permissions and ownerships to protect anything that might be sensitive.
One obvious example is to ensure that you always have suPHP compiled into the Apache build (and suEXEC enabled) so that web scripts don't run under the common nobody account, but the individual user accounts.
Jonathan Michaelson
Need your cPanel servers secured and tuned?
cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
http://www.configserver.com
cpanel
I open the server to the user of ssh, such an environment the user can not view the users directory, but in addition users can view other than the directory would create safety hazards. Webshell to the outside world through the invasion. Absolute lock users can reduce the safety hazard
Reply With Quote