Re: Prevent perl script read /etc/named.conf

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
How would any script be able to read /etc/named.conf for a script owned by named:named service rather than an individual user unless that individual user has jailed shell or shell access to the machine? If the user does have such access, then anything can be used to read /etc/named.conf files due to the file permissions required for that file to function.
 

ljweb

Member
Nov 26, 2003
11
0
151
How would any script be able to read /etc/named.conf for a script owned by named:named
This seems to be possible via a perl script, i just caught one now which started with "open (d0mains, '/etc/named.conf') or $err=1;" . User does not have shell access at all.. Cpanel/WHM all up to date. I think you should take a closer look at this..
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
Please open up a ticket in WHM > Support Center > Contact cPanel if you have any questions on this.
 

abdelhost77

Well-Known Member
Apr 25, 2012
116
2
68
Morocco
cPanel Access Level
Root Administrator
The same issue Here , the server is secured with all stuffs , Suhosin , CSF , mod-security , but a perl script can still read /etc/named.conf with "open (d0mains, '/etc/named.conf') or $err=1;" , i think it a serious cpanel vulnerabilitie , any solution please ?
 

cPanelTristan

Quality Assurance Analyst
Staff member
Oct 2, 2010
7,607
40
248
somewhere over the rainbow
cPanel Access Level
Root Administrator
Hello,

As stated, please submit a ticket if you believe this is a security issue. Since you appear to be what you consider a product defect, these would be posted to http://go.cpanel.net/bugs or using the Bugs link at the top of the forum.

Thanks!
 

tiff2342

Well-Known Member
Apr 20, 2012
140
0
66
cPanel Access Level
Root Administrator
How is this a security issue by being able to view domains hosted? You can look up domains hosted on a server by doing reverse lookups.