The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Should httpd-devel be removed for security?

Discussion in 'Security' started by jols, Sep 20, 2009.

  1. jols

    jols Well-Known Member

    Joined:
    Mar 13, 2004
    Messages:
    1,111
    Likes Received:
    2
    Trophy Points:
    38
    We have installed httpd-devel on a few servers to facilitate installations, and now I read this:

    "I removed httpd-devel and all of the dependencies that were installed with it... as I don't like to have a compiler on a webserver... as that can be used by hackers to compile their own kits if they find a way to exploit apache or some bad PHP code. The contents of /var/log/yum.log comes in handy for reversing things. :)"

    Is this statement True? False? Maybe?
     
  2. cPanelDavidL

    cPanelDavidL Member
    Staff Member

    Joined:
    Nov 12, 2007
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    Hello!

    Please do remove this. Any httpd rpms / packages put in place will cause conflicts with Easy Apache 3.

    No need for any http or php based rpms to ever be installed manually - Easy Apache will take care of any and all building and security concerns that you may have.

    As always if you do have specific concerns you wish for us to address - please do feel free to contact us via any channel to have those inquiries addressed one-by-one.

    Thank you!
     
Loading...

Share This Page