Disable wget for all users?

Snover

Active Member
Sep 29, 2003
30
0
156
Would setting the chmod for wget to 700 cause problems with the cPanel scripts? All user CGI (including PHP) is suexec, and recently (the phpBB exploit) some files were downloaded that would not have otherwise been downloaded if wget was not available to these users. I understand that it may be a bit of a kluge to do this, but I think it's a fairly simple way to harden the server a bit against any future possible remote code execution.
 

linux-image

Well-Known Member
Jun 8, 2004
1,190
1
168
India
cPanel Access Level
Root Administrator
fast and easy solution is: move the binary of wget to some other name :) When you want to use it; use the alternate name and for the rest let that remain a mystery. this is but a tweak; that will have to be reversed while you do any upcp or any process that needs a wget download.