The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

it is safe to chmod this file ??

Discussion in 'General Discussion' started by kuwaitnt, Jun 5, 2006.

  1. kuwaitnt

    kuwaitnt Well-Known Member

    Joined:
    Oct 13, 2003
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    6
    hello please i want get help


    it is safe to chmod this files

    /bin to 750
    /sbin to 710
    /usr/bin/perl 750


    and if i change the permissions are there any thing will faile


    i need to do this to fix cgitelnet.pl issue

    many time i see some one try to hacking my server with this tool

    i have search there are no fix by change file and folder perm.



    thanks
     
  2. kuwaitnt

    kuwaitnt Well-Known Member

    Joined:
    Oct 13, 2003
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    6
    /usr/bin/perl 750 when i do it cpanel show internal server error i back it to 755

    but are there any one can help and say it is safe or not

    i dosn't mean the cgitelnet scripts i mean system file or scipts does it work ??

    i make this perm. to not let perl or php scripts to use shell command
     
  3. AndyReed

    AndyReed Well-Known Member
    PartnerNOC

    Joined:
    May 29, 2004
    Messages:
    2,222
    Likes Received:
    3
    Trophy Points:
    38
    Location:
    Minneapolis, MN
    Changing the permission on these files is not the best way to stop hackers from accessing your server. Your best option is to secure your server.
     
  4. kuwaitnt

    kuwaitnt Well-Known Member

    Joined:
    Oct 13, 2003
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    6
    :) it is secure but iam suffer from perl only

    if you have any help about secure the perl i will be fine from hackers


    iam secure every thing only perl i cant stop it because cpanel is run on perl so i can't deal very will with it :(


    thanks for replay
     
  5. dave9000

    dave9000 Well-Known Member

    Joined:
    Apr 7, 2003
    Messages:
    891
    Likes Received:
    1
    Trophy Points:
    16
    Location:
    arkansas
    cPanel Access Level:
    Root Administrator
    Instead of trying to fix the symptoms why not fix the cause ?

    How is the cgitelnet.pl getting loaded onto the server ?

    then block access for them to upload it
     
  6. kuwaitnt

    kuwaitnt Well-Known Member

    Joined:
    Oct 13, 2003
    Messages:
    75
    Likes Received:
    0
    Trophy Points:
    6
    some of our client use old upload scripts

    i have suspend this hosting but how can i insure there are my clients can't use old insecure upload scripts so that i should disable perl to run shell command
     
  7. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    You cannot prevent perl from running shell commands without breaking your OS, unless you setup some kind of chroot environment for apache, which you can't do on a cPanel server.

    As dave9000 said, you have to stop your users using them. That's where your hosting AUP comes in and if you find such a script you suspend their account - there's little else you can do.
     
Loading...

Share This Page