Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Does cPanel protect against bad file permissions?

Discussion in 'General Discussion' started by nivekau, Feb 17, 2017.

Tags:
  1. nivekau

    nivekau Active Member

    Joined:
    Jul 22, 2011
    Messages:
    42
    Likes Received:
    3
    Trophy Points:
    58
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    My developer was trying to troubleshoot an application which was throwing 500 server errors, and he had set some files and folders to 0777. The solution seemed to be to set all the folder and file permissions to 0755 and 0644 respectively.

    Does cpanel now have some sort of built in protection against file and folder permissions that less restrictive than 0755 (folders) and 0644 (files) ?
     
    #1 nivekau, Feb 17, 2017
    Febriansyah likes this.
  2. Infopro

    Infopro cPanel Sr. Product Evangelist Staff Member

    Joined:
    May 20, 2003
    Messages:
    16,743
    Likes Received:
    456
    Trophy Points:
    583
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 Infopro, Feb 17, 2017
  3. nivekau

    nivekau Active Member

    Joined:
    Jul 22, 2011
    Messages:
    42
    Likes Received:
    3
    Trophy Points:
    58
    Location:
    Australia
    cPanel Access Level:
    Root Administrator
    Thanks Infopro, but I don't understand your response.

    Does cpanel now have some sort of built in protection against file and folder permissions that are LESS restrictive than 0755 (folders) and 0644 (files) ?
     
    #3 nivekau, Feb 19, 2017
  4. Jcats

    Jcats Well-Known Member

    Joined:
    May 25, 2011
    Messages:
    720
    Likes Received:
    123
    Trophy Points:
    168
    Location:
    New Jersey
    cPanel Access Level:
    DataCenter Provider
    No, like Infopro said, its from SuPHP, it protects you from using unnecessary permissions which could lead to security issues. Since PHP runs as the user, there is never any reason you should need higher permissions outside off 755/644. Occasionally some PHP scripts need execute permissions, example the scripts that pipe emails into tickets for billing software like WHMCS/CE
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 Jcats, Feb 19, 2017
  5. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    46,375
    Likes Received:
    2,044
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    You can also post the output from /usr/local/apache/logs/error_log if you are encountering additional 500 error messages in your browser after correcting the permissions on the files to ones supported by suPHP. We should be able to determine the cause of the error message based on the output.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #5 cPanelMichael, Feb 20, 2017
(You must log in or sign up to post here.)
Loading...
Similar Threads - Does cPanel protect
  1. rpvw

    Pending Publication [CPANEL-25973] Security Advisor does not recognize KernelCare patch on CloudLinux

    rpvw, Mar 18, 2019 at 11:56 AM, in forum: CloudLinux
    Replies:
    1
    Views:
    110
    cPanelMichael
    Mar 18, 2019 at 1:59 PM
  2. madnoob2

    Does cPanel log notification mails?

    madnoob2, Mar 18, 2019 at 10:02 AM, in forum: General Discussion
    Replies:
    3
    Views:
    231
    cPanelLauren
    Mar 19, 2019 at 3:13 PM
  3. joburg

    Moved addon domain to another cPanel account. Now SSL does not work

    joburg, Feb 8, 2019, in forum: Security
    Replies:
    3
    Views:
    85
    cPanelLauren
    Feb 11, 2019
  4. BlueSteam

    In Progress [CPANEL-22039] AutoSSL doesn't cover Service Subdomains when parent domain uses third-party cert

    BlueSteam, Feb 8, 2019, in forum: Security
    Replies:
    11
    Views:
    182
    cPanelMichael
    Feb 15, 2019
  5. vicos

    Does cPanel install mySQL or mariaDB by default?

    vicos, Jan 27, 2019, in forum: Database Discussion
    Replies:
    8
    Views:
    294
    cPanelLauren
    Jan 29, 2019

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice