The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cgi scripts

Discussion in 'General Discussion' started by window, May 26, 2004.

  1. window

    window Member

    Joined:
    Mar 11, 2004
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    is there any how to link to show how to secure the cgi, to not be possible to exploit with it?
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Not sure I understand, you want to be able to configure your server so that CGI scripts cannot be used to exploit flaws in the server configuration?

    If so, you can't, simple as that. You should, however, always enabled suexec so that CGI scripts run under the process of the user - this can help slow things down sometimes, but other than that, the best way is to ensure that:

    1. You keep your OS and applications up to date
    2. You subscribe to security mailing lists for yur OS
    3. You keep cPanel up to date

    There is one more thing to help you in a script:
    /scripts/enablefileprotect

    Which makes it a little more difficult for users to access other users files on the server - by no means impossible, but again, it slows them down a bit.
     
  3. window

    window Member

    Joined:
    Mar 11, 2004
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
Loading...

Share This Page