The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cpanel apache directory

Discussion in 'EasyApache' started by liang3391, Jun 9, 2009.

  1. liang3391

    liang3391 Active Member

    Joined:
    Apr 14, 2009
    Messages:
    36
    Likes Received:
    0
    Trophy Points:
    6
    cpanel apache directory absolutely not locked, although users can not be cross-directory access, users can access other directories, or may be accessed through other webshell directory.
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    It's perfectly normal in a shared hosting environment that users can view some directories and files outside of their web root. It's the responsibility of the server administrator to user linux file permissions and ownerships to protect anything that might be sensitive.

    One obvious example is to ensure that you always have suPHP compiled into the Apache build (and suEXEC enabled) so that web scripts don't run under the common nobody account, but the individual user accounts.
     
  3. liang3391

    liang3391 Active Member

    Joined:
    Apr 14, 2009
    Messages:
    36
    Likes Received:
    0
    Trophy Points:
    6
    cpanel

    I open the server to the user of ssh, such an environment the user can not view the users directory, but in addition users can view other than the directory would create safety hazards. Webshell to the outside world through the invasion. Absolute lock users can reduce the safety hazard
     
Loading...

Share This Page