Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Scanning Zipfiles with AV

Discussion in 'Security' started by durangod, Jun 19, 2019.

  1. durangod

    durangod Well-Known Member

    Joined:
    May 12, 2012
    Messages:
    452
    Likes Received:
    28
    Trophy Points:
    78
    cPanel Access Level:
    Website Owner
    Hi, if a site on shared hosting with cpanel installed allows users to upload zip files via a site form, is there anything that cpanel has that can scan those files as they are uploaded to the server?

    These sites dont have root access so they cant install anything, it needs to be something readily available off the menu.

    What can be done to secure these zip files to prevent viruses and such from being uploaded via zip files?

    Thanks :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  2. fuzzylogic

    fuzzylogic Well-Known Member

    Joined:
    Nov 8, 2014
    Messages:
    131
    Likes Received:
    76
    Trophy Points:
    28
    cPanel Access Level:
    Root Administrator
    ConfigServer eXploit Scanner does that, but it is a paid cPanel plugin.

    From the cxs Documentation...
    The default options for cxswatch are options=mMOLfuSGchexdnwZRrD
    Z stands for scan compressed files.

    Additionally, cxs can provide a Modsecurity rule which pipes all http uploads to cxs for scanning before the http request is allowed to complete. The http request is blocked by Modsecurity if cxs gets a match.

    So in your case I would expect both methods to detect almost in real time a compressed exploit known to clamav.

    Sorry I just reread your post and you wanted something that a regular cPanel account user can access. My suggestions only apply to a server administrator with root access.
     
    #2 fuzzylogic, Jun 20, 2019
    Last edited: Jun 20, 2019
    cPanelMichael likes this.
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    47,555
    Likes Received:
    2,182
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
  4. durangod

    durangod Well-Known Member

    Joined:
    May 12, 2012
    Messages:
    452
    Likes Received:
    28
    Trophy Points:
    78
    cPanel Access Level:
    Website Owner
    Thats great thanks... :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    cPanelMichael likes this.
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice