Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Jailed cgi/perl

Discussion in 'Security' started by Fr3DBr, Apr 8, 2013.

  1. Fr3DBr

    Fr3DBr Member

    Joined:
    Apr 6, 2013
    Messages:
    21
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    The Netherlands
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Hello,

    How can we do this using cpanel ?

    We have a few users running cgi processes, but at the same time we have issues with hacking, due to the malicious usage of certain perl scripts.

    What can we do ? :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. arunsv84

    arunsv84 Well-Known Member

    Joined:
    Oct 20, 2008
    Messages:
    373
    Likes Received:
    1
    Trophy Points:
    68
    Location:
    127.0.0.1
    cPanel Access Level:
    Root Administrator
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. Fr3DBr

    Fr3DBr Member

    Joined:
    Apr 6, 2013
    Messages:
    21
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    The Netherlands
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Hello,

    I didn't found much on this subject I am interested.

    The purpose is avoid hackers from 'local rooting' the server.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. arunsv84

    arunsv84 Well-Known Member

    Joined:
    Oct 20, 2008
    Messages:
    373
    Likes Received:
    1
    Trophy Points:
    68
    Location:
    127.0.0.1
    cPanel Access Level:
    Root Administrator
    To avoid hackers, you need to check & analyze the scripts, make sure that its written in safe way and have the correct permissions. Check the following url for detailed explanation.

    Securing your cgi-bin | VerySimple

    Cheers!!!
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. Fr3DBr

    Fr3DBr Member

    Joined:
    Apr 6, 2013
    Messages:
    21
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    The Netherlands
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Yes, i get it, the problem is that doing something similar with alot of users in a webhosting is very complicated.

    So Jailing / Chrooting perl is a much more suitable option...
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice