Safe to change ownership of files in /usr/local/cpanel? (Why w allowed for anyone?)

O

olephant

Registered
Mar 15, 2013
2
0
1
cPanel Access Level
Root Administrator
Hello,

My root admin skills are pretty basic, but I was wondering why the ownership of these files (or files such as these) allows write permissions to anyone:


File '/usr/local/cpanel/3rdparty/php/53/lib/pear/HTML_Template_IT.xml' is owned by root and has written permissions to anyone.
File '/usr/local/cpanel/3rdparty/php/53/lib/pear/HTTP_Request.xml' is owned by root and has written permissions to anyone.
'/usr/local/cpanel/3rdparty/php/53/lib/pear/Date.xml' same thing...
/usr/local/cpanel/3rdparty/php/53/lib/pear/HTTP.xml

This was reported by Rootcheck (OSSEC), and yeah that seems to be the case. I have no idea what the files are. RW permissions for anyone... Problem?
Should I ever hesitate to change permissions of files within these directories (in order to restrict to root user)?

Feel free to tip me off if this question should be put to my host instead.
Figured that if it had anything to do with how Cpanel works, it might be useful to ask here...

I've already removed write permissions as I reckoned it would be ok.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
H Is it safe to tail and grep apache access log - is there risk of shell injection? Security 6
R how to make my site more safe ? Security 2
S How to tell which services aren't in active use, and can be safely blocked using Host Access Control? Security 7
O Shared hosting PHP safety Security 3
K /usr/local/cpanel/bin/jail_safe_passwd Segmentation fault Security 1
Similar threads
Is it safe to tail and grep apache access log - is there risk of shell injection?
how to make my site more safe ?
How to tell which services aren't in active use, and can be safely blocked using Host Access Control?
Shared hosting PHP safety
/usr/local/cpanel/bin/jail_safe_passwd Segmentation fault
Top Bottom