Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SOLVED Kernel does not support the prevention of symlink ownership attacks

Discussion in 'Security' started by Lillike, Jun 20, 2018.

  1. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    The following message can be seen in Sec. Ad.:
    Kernel does not support the prevention of symlink ownership attacks.

    I try to retrieve the repository from cPanel:

    root@ip-192-xxxx [~]# cd /etc/yum/repos.d/
    -bash: cd: /etc/yum/repos.d/: No such file or directory
    root@ip-192-xxxx [~]# wget https://securedownloads.cpanel.net/cPkernel.repo
    --2018-06-20 07:02:20-- https://securedownloads.cpanel.net/cPkernel.repo
    Resolving securedownloads.cpanel.net... 208.74.123.12, 208.74.121.38
    Connecting to securedownloads.cpanel.net|208.74.123.12|:443... connected.
    HTTP request sent, awaiting response... 404 Not Found
    2018-06-20 07:02:20 ERROR 404: Not Found.

    How can i solve this problem.
    Please, advice.
     
  2. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @Lillike

    The directory you're referencing doesn't exist:
    Code:
    root@ip-192-xxxx [~]# cd /etc/yum/repos.d/
    -bash: cd: /etc/yum/repos.d/: No such file or directory
    I think you mean to cd to:
    Code:
    /etc/yum.repos.d/
    Also, the cPKernel was deprecated in v68 of cPanel and is not available in v70.
    From: How to Harden Your cPanel System's Kernel - cPanel Knowledge Base - cPanel Documentation
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    Hello, Lauren


    I understood the above instructions.

    If I install v70 of cPanel on the server, there are changes that would result in many server services and websites being reinstalled (is it true?). Server info: CENTOS 6.9 virtuozzo v70.0.51

    Please, advice.
     
  4. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    can you clarify what you mean by this? I don't understand, the sites and services wouldn't be removed on any server updating.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. Lillike

    Lillike Active Member

    Joined:
    May 29, 2018
    Messages:
    31
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Hungary
    cPanel Access Level:
    Root Administrator
    Hi, Lauren,


    I tried to find the above content, but unfortunately I did not succeed. Once again: v70 of cPanel is secure and therefore there will be no problems (I understand that i may have other problems). After updating, what steps I need to take against the symlink attack. Please, advice.
     
  6. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  7. ronaldst

    ronaldst Well-Known Member

    Joined:
    Feb 22, 2016
    Messages:
    58
    Likes Received:
    7
    Trophy Points:
    8
    Location:
    Norway
    cPanel Access Level:
    Root Administrator
    I am getting the same warning in security advisor, and I am running the paid version of kernelcare. I am on cPanel v72. Why is that?
     
  8. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Hi @ronaldst

    It may be that you don't have the patcheset installed though you do have kernelcare. You can find out by running the following:
    Code:
    kcarectl --patch-info
    It's also possible that while kernelcare supports your kernel the free patchset does not. Can you show me what kernel you're running:

    Code:
    uname -r
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  9. ronaldst

    ronaldst Well-Known Member

    Joined:
    Feb 22, 2016
    Messages:
    58
    Likes Received:
    7
    Trophy Points:
    8
    Location:
    Norway
    cPanel Access Level:
    Root Administrator
    --patch-info
    Code:
    OS: centos7
    kernel: kernel-3.10.0-862.9.1.el7
    time: 2018-07-18 11:21:55
    
    
    
    kpatch-name: 3.10.0/proc-restrict-pagemap-access.patch
    kpatch-description: Restrict access to pagemap/kpageflags/kpagecount
    kpatch-kernel:
    kpatch-cve:
    kpatch-cvss:
    kpatch-cve-url: http://googleprojectzero.blogspot.ru/2015/03/exploiting-dram-rowhammer-bug-to-gain.html
    kpatch-patch-url:
    
    uname: 3.10.0-862.9.1.el7
    Kernel
    Code:
    3.10.0-862.9.1.el7.x86_64
     
  10. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    ronaldst likes this.
  11. ronaldst

    ronaldst Well-Known Member

    Joined:
    Feb 22, 2016
    Messages:
    58
    Likes Received:
    7
    Trophy Points:
    8
    Location:
    Norway
    cPanel Access Level:
    Root Administrator
    That sure solved my issue.

    Thank you.
     
  12. cPanelLauren

    cPanelLauren Forums Analyst
    Staff Member

    Joined:
    Nov 14, 2017
    Messages:
    2,721
    Likes Received:
    186
    Trophy Points:
    143
    Location:
    Houston
    cPanel Access Level:
    DataCenter Provider
    HI @ronaldst

    I'm really happy to hear that! Thank you for updating the thread to let us know as well.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice