Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Security issues on Proftp on R-113

Discussion in 'Security' started by speckados, Nov 12, 2004.

  1. speckados

    speckados Well-Known Member

    Joined:
    May 21, 2003
    Messages:
    323
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Pastrana :: Guadalajara :: España
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    WHM 9.9.8 cPanel 9.9.8-R113 Fedora i686 - WHM X v3.1.0

    With original config of proftpd, abny user (jailshelo r normal shell) anby user got to kiktchen (/root, /etc/ /home) and download, see all files with temerary permissions.

    DefaultRoot ~ !wheel // <<< That it's wrong
    If change to DefaultRoot ~
    User are chrooted
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 speckados, Nov 12, 2004
    Last edited: Nov 12, 2004
  2. Aric1

    Aric1 Well-Known Member

    Joined:
    Oct 15, 2003
    Messages:
    324
    Likes Received:
    0
    Trophy Points:
    166
    cPanel Access Level:
    DataCenter Provider
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. speckados

    speckados Well-Known Member

    Joined:
    May 21, 2003
    Messages:
    323
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Pastrana :: Guadalajara :: España
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    Thanks.

    I don't kwon this link.

    I've posted the bug...
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. Aric1

    Aric1 Well-Known Member

    Joined:
    Oct 15, 2003
    Messages:
    324
    Likes Received:
    0
    Trophy Points:
    166
    cPanel Access Level:
    DataCenter Provider
    Update your post above with the link to the bug you submitted when you get a chance. It increases your chances. :)
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. nickn

    nickn Well-Known Member
    PartnerNOC

    Joined:
    Jun 15, 2003
    Messages:
    619
    Likes Received:
    1
    Trophy Points:
    168
  6. speckados

    speckados Well-Known Member

    Joined:
    May 21, 2003
    Messages:
    323
    Likes Received:
    1
    Trophy Points:
    168
    Location:
    Pastrana :: Guadalajara :: España
    cPanel Access Level:
    DataCenter Provider
    Twitter:
    On every server I've a user with normal permission (no whell user, jailshell) for testing, problems: Mail, ftp, and other issues
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice