Hiding binaries on cpanel server

winlinuxadmins

Registered
Feb 19, 2011
4
0
51
India
Hello,

If you having cagefs enabled for your Cpanel server you can hide the binary from user which might be harmful to server and cause of exploit by adding binary name into "black.list" file.

example :
[email protected][~]#cat /etc/cagefs/black.list
/bin/uname
[email protected][~]#
After adding the file to blacklist make sure you update the cagefs with cagefsctl --update option.

Regards,
Winlinuxadmins