The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

*cc* - should I chmod it to 000?

Discussion in 'General Discussion' started by hostito, May 21, 2003.

  1. hostito

    hostito Active Member

    Joined:
    Mar 9, 2003
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    I was thinking of chmoding all my *cc* binaries to 000 to protect against hacks, but I fear that this could break some of the cpanel functions.

    I read that this:

    1. Make a different /tmp partition.
    2. via fstab, ensure that you have nosuid,nodev for /tmp.
    3. chmod 000 /usr/bin/*cc*

    Tends to prevent most hacks.

    Does any one have any suggestions or tips from experience reagrding this?

    Thanks :)

    cPanel.net Support Ticket Number:
     
  2. Kyle

    Kyle Member

    Joined:
    Jan 19, 2003
    Messages:
    20
    Likes Received:
    0
    Trophy Points:
    1
    You will need to chmod 700 /usr/bin/*cc* to update cpanel (if i remember correctly), just chmod 000 /usr/bin/*cc* afterwards.

    cPanel.net Support Ticket Number:
     
  3. casey

    casey Well-Known Member

    Joined:
    Jan 17, 2003
    Messages:
    2,303
    Likes Received:
    0
    Trophy Points:
    36
    Location:
    If there is trouble, it will find me
    Actually, updating cpanel works fine for me with 000 permissions. It's installing perl modules or whathaveyou that needs the 700 permissions.

    cPanel.net Support Ticket Number:
     
  4. Juanra

    Juanra Well-Known Member

    Joined:
    Sep 22, 2001
    Messages:
    777
    Likes Received:
    0
    Trophy Points:
    16
    Location:
    Spain
    /usr/bin/*cc* isn't just compilers btw.

    cPanel.net Support Ticket Number:
     
Loading...

Share This Page