The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

security risks with cron jobs

Discussion in 'Security' started by mher, Jan 1, 2005.

Thread Status:
Not open for further replies.
  1. mher

    mher Well-Known Member

    Joined:
    Jun 14, 2004
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    Hello,

    I need to disable the cron jobs for security reasons because any user can run shell commands even if they dont have shell access.

    Anyway to disable it or remove it from cpanel?
     
  2. OCX

    OCX Well-Known Member

    Joined:
    Sep 20, 2003
    Messages:
    232
    Likes Received:
    0
    Trophy Points:
    16

    log in to WHM and go to Feature manager
    then Edit a Feature List

    remove cron check mark
    then save
     
  3. mher

    mher Well-Known Member

    Joined:
    Jun 14, 2004
    Messages:
    49
    Likes Received:
    0
    Trophy Points:
    6
    A reseller can easily change feature manger to create accounts with cron jobs

    a better way is to creat a file /etc/cron.allow
    anyone not listed in that file won't be able to use cron
     
  4. killerid2k

    killerid2k Member

    Joined:
    Dec 3, 2005
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1

    Can you paste the content of that file ?
     
  5. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Please don't cross-post in the forums.
     
Loading...
Thread Status:
Not open for further replies.

Share This Page