Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED Is it safe to enable "CGI Access" for cPanels?

Discussion in 'Security' started by postcd, Oct 17, 2016.

Tags:
  1. postcd

    postcd Well-Known Member

    Joined:
    Oct 22, 2010
    Messages:
    694
    Likes Received:
    15
    Trophy Points:
    68
    Hello, when reselling cpanel hosting publicly is it safe/secure to enable "CGI Access" by default for all new cpanel accounts?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. ItsMattSon

    ItsMattSon Well-Known Member

    Joined:
    Sep 5, 2016
    Messages:
    167
    Likes Received:
    34
    Trophy Points:
    103
    Location:
    Perth
    cPanel Access Level:
    Root Administrator
    Subscribing to thread - Would like to know this as well.

    Additionally, does anyone know if CGI can be disabled? Is it needed at all?
     
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,720
    Likes Received:
    1,883
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    For security reasons, we strongly recommend that you do not use CGI scripts in directories other than the cgi-bin directory. Information about enabling or disabling CGI scripts is documented at:

    How to Enable Additional CGI Scripts - cPanel Knowledge Base - cPanel Documentation

    Ensure to review the "Warning" section for information about EasyApache 4.

    Let us know if you have any additional questions.

    Thanks!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    ItsMattSon likes this.
  4. ItsMattSon

    ItsMattSon Well-Known Member

    Joined:
    Sep 5, 2016
    Messages:
    167
    Likes Received:
    34
    Trophy Points:
    103
    Location:
    Perth
    cPanel Access Level:
    Root Administrator
    Hmm. i tried "enabling" CGI with the EasyApache 4 Option ExecCGI (checked the box) but my Hello World (.pl or .cgi) perl script doesn't execute in web root or /public_html/cgi-bin/ so I'm a bit lost on this one. It just shows up as plain text in the browser.

    Any ideas?
     
  5. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,720
    Likes Received:
    1,883
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Could you browse to "WHM >> Account Functions >> Modify an Account", choose the account you are testing with, and check to see if "CGI" is enabled under the "Privileges" section?

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    ItsMattSon likes this.
  6. ItsMattSon

    ItsMattSon Well-Known Member

    Joined:
    Sep 5, 2016
    Messages:
    167
    Likes Received:
    34
    Trophy Points:
    103
    Location:
    Perth
    cPanel Access Level:
    Root Administrator
    Fantastic! I totally missed that (it was not enabled in the package). Good to know there is a way to toggle CGI privilege. I'm all sorted on this thread. Thanks Michael :)
     
    #6 ItsMattSon, Nov 1, 2016
    Last edited: Nov 1, 2016
    cPanelMichael likes this.
  7. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,720
    Likes Received:
    1,883
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    I'm happy to see that information was helpful! Thanks for updating us with the outcome.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    ItsMattSon likes this.
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice