customer can download raw access logs for a foreign domain(separate customer)

R

rapidfire911

Active Member
Jul 5, 2005
42
0
156
We have a customer who can log into http://domain.com:2082/frontend/x/raw/index.html and they can download a domains raw access log that doesnt belong to them(separate customer). It looks like it is some kind of bug in cpanel because I have noticed it with a couple customers on different servers. Any information would be greatly appreciated. :)
 
linux-image

linux-image

Well-Known Member
Jun 8, 2004
1,190
1
168
India
cPanel Access Level
Root Administrator
try opening /var/cpanel/users/username , where username is the username of any other customer , whom ur primary customer is able to access log. see if the OWNER is set to your primary customer username

or if the /var/cpanel/users/primary has the entry for any of the other domains, he is able to see the logs..

:) its confusing .. i know.. but cant help.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
P cPanel Level (Customer) Error Log not showing errors Site Performance Analytics 3
J Help the customer know which errors in the error log are his. Site Performance Analytics 4
R awstats doent work in customers panel Site Performance Analytics 2
B tomcat logs per customer? Site Performance Analytics 6
X AWstats 'Update Now" Button, How to edit and add it in for Customers Site Performance Analytics 1
Similar threads
cPanel Level (Customer) Error Log not showing errors
Help the customer know which errors in the error log are his.
awstats doent work in customers panel
tomcat logs per customer?
AWstats 'Update Now" Button, How to edit and add it in for Customers
Top Bottom