The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

cpanel /tmp question

Discussion in 'General Discussion' started by shann, May 1, 2006.

  1. shann

    shann Well-Known Member

    Joined:
    Jul 5, 2002
    Messages:
    366
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Website Owner
    Our server's /tmp directory configured a nonexec , but still some of the perl scripts has been downloaded and executed. What other things can be configure?
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    That's because although the script cannot be run directly, i.e.:

    /tmp/hack.pl

    It can still be run through an interpreter, i.e.:

    perl /tmp/hack.pl

    This is because the first example requires exec permission, but the second only needs read permission on the file.

    The solution is to ensure your clients are running secure scripts and be sure to suspend accounts that don't. Use more mod_security rules can help, but are really only a preventative and not a cure.
     
Loading...

Share This Page