Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

is ziparchive secure

Discussion in 'Security' started by yamaharr1, Jul 24, 2013.

  1. yamaharr1

    yamaharr1 Well-Known Member

    Joined:
    Jun 22, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    56
    I've been doing lots of reading but haven't found anything up to date, is ziparchive secure?

    The last thing I've found was in 2012 and showed it to be a security risk, is this still the case or has it all been sorted?
     
    #1 yamaharr1, Jul 24, 2013
  2. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    47,005
    Likes Received:
    2,123
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello :)

    Could you clarify the specific application you are referring to, and what method you are using to install it? For instance, is this the ZipArchive PHP class?

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #2 cPanelMichael, Jul 25, 2013
  3. yamaharr1

    yamaharr1 Well-Known Member

    Joined:
    Jun 22, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    56
    Hello

    Yes the PHP ZipArchive,

    I haven't looked into the install method if it is available as a module then that way otherwise whichever is available.
     
    #3 yamaharr1, Jul 26, 2013
  4. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    47,005
    Likes Received:
    2,123
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    You can select "Zip" as a PHP module under the "Exhaustive Options List" for PHP. I am not aware of any specific security concerns regarding this module, but feel free to reference a specific security report and we can investigate that for you.

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #4 cPanelMichael, Jul 26, 2013
  5. yamaharr1

    yamaharr1 Well-Known Member

    Joined:
    Jun 22, 2007
    Messages:
    91
    Likes Received:
    0
    Trophy Points:
    56
    There was a security risk with relative paths in 2009 that was supposedly fixed but it seemed to pop back up in 2012 I can't find any information in regards to it being secure or insecure now.

    I will have to guess that if it was insecure there would be more information out in posts, if you do come across anything that would be great, thank you.
     
    #5 yamaharr1, Jul 26, 2013
(You must log in or sign up to post here.)
Loading...
Similar Threads - ziparchive secure
  1. coursevector

    Secure Private information

    coursevector, Apr 17, 2019, in forum: Security
    Replies:
    10
    Views:
    529
    cPanelMichael
    Apr 26, 2019
  2. Brian Lack

    In Progress [CPANEL-26253 ] PCI compliance failure due to unsecured Horde cookies

    Brian Lack, Mar 12, 2019, in forum: Security
    Replies:
    3
    Views:
    436
    cPanelLauren
    Mar 14, 2019
  3. grayloon

    PHP 7.2 Secure Transition

    grayloon, Nov 12, 2018, in forum: EasyApache
    Replies:
    9
    Views:
    188
    cPanelMichael
    Nov 13, 2018
  4. Moobs

    Is DropBox Business Secure Enough For WHM Backups?

    Moobs, Aug 27, 2018, in forum: Data Protection
    Replies:
    2
    Views:
    350
    SoftDux
    Feb 11, 2019
  5. greektranslator

    Your connection to this site is not secure

    greektranslator, May 20, 2018, in forum: Security
    Replies:
    1
    Views:
    1,177
    cPanelMichael
    May 21, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice