Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Kernel does not support the prevention of symlink ownership attacks

Discussion in 'Security' started by Lillike, Jun 20, 2018.

  1. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    The following message can be seen in Sec. Ad.:
    Kernel does not support the prevention of symlink ownership attacks.

    I try to retrieve the repository from cPanel:

    root@ip-192-xxxx [~]# cd /etc/yum/repos.d/
    -bash: cd: /etc/yum/repos.d/: No such file or directory
    root@ip-192-xxxx [~]# wget https://securedownloads.cpanel.net/cPkernel.repo
    --2018-06-20 07:02:20-- https://securedownloads.cpanel.net/cPkernel.repo
    Resolving securedownloads.cpanel.net... 208.74.123.12, 208.74.121.38
    Connecting to securedownloads.cpanel.net|208.74.123.12|:443... connected.
    HTTP request sent, awaiting response... 404 Not Found
    2018-06-20 07:02:20 ERROR 404: Not Found.

    How can i solve this problem.
    Please, advice.
     
  2. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,814
    Likes Received:
    133
    Trophy Points:
    118
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @Lillike

    The directory you're referencing doesn't exist:
    Code:
    root@ip-192-xxxx [~]# cd /etc/yum/repos.d/
    -bash: cd: /etc/yum/repos.d/: No such file or directory
    I think you mean to cd to:
    Code:
    /etc/yum.repos.d/
    Also, the cPKernel was deprecated in v68 of cPanel and is not available in v70.
    From: How to Harden Your cPanel System's Kernel - cPanel Knowledge Base - cPanel Documentation
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    Hello, Lauren


    I understood the above instructions.

    If I install v70 of cPanel on the server, there are changes that would result in many server services and websites being reinstalled (is it true?). Server info: CENTOS 6.9 virtuozzo v70.0.51

    Please, advice.
     
  4. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,814
    Likes Received:
    133
    Trophy Points:
    118
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    can you clarify what you mean by this? I don't understand, the sites and services wouldn't be removed on any server updating.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    26
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    Hi, Lauren,


    I tried to find the above content, but unfortunately I did not succeed. Once again: v70 of cPanel is secure and therefore there will be no problems (I understand that i may have other problems). After updating, what steps I need to take against the symlink attack. Please, advice.
     
  6. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    1,814
    Likes Received:
    133
    Trophy Points:
    118
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice