Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Kernel Symlink Protection

Discussion in 'Security' started by Nirjonadda, Nov 18, 2016.

  1. Nirjonadda

    Nirjonadda Well-Known Member

    Joined:
    May 8, 2013
    Messages:
    418
    Likes Received:
    10
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    If this do you need Apache Configuration, Global Configuration. Under Directory “/” Options, enables FollowSymLinks and enable SymLinksIfOwnerMatch With enabled jailshell and EXPERIMENTAL: Jailshell Virtual Hosts using mod_ruid2?
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,659
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    No, Mod_Ruid2 with "EXPERIMENTAL: Jailshell Virtual Hosts" enabled in "Tweak Settings" is sufficient to pass the Security Advisor symlink protection warning without changes to the Apache global configuration.

    Thank you.
     
  3. Victoria_93

    Victoria_93 Registered

    Joined:
    Nov 18, 2016
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    India
    cPanel Access Level:
    Website Owner
    I am getting the following error in WHM Please suggest a fix

    Kernel does not support the prevention of symlink ownership attacks.You do not appear to have any symlink protection enabled through a properly patched kernel on this server, which provides additional protections beyond those solutions employed in userland.
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,659
    Likes Received:
    1,427
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    This is answered on the following thread:

    https://forums.cpanel.net/threads/kernel-symlink-ownership-attacks-while-jailshell-mod_ruid2-enabled.581701

    Thanks!
     
Loading...

Share This Page