Prevent creating symbolic links for non root users
Forum
  1. Forums
  2. CloudLinux and Control Panels
  3. CloudLinux and cPanel
  1. Baby
  2. Wednesday, 20 March 2013
  3.  Subscribe via email
Hello,

Regarding the following security issue:

https://forums.cpanel.net/f185/how-prevent-creating-symbolic-links-non-root-users-202242.html

Some people in that thread mentions that CloudLinux + Cagefs is the best solution to the problem. There is also some mention of SecureLinks.

1. If we install CloudLinux on an existing cPanel server by running cldeploy and then rebooting, is this sufficient or are there any further steps needed to fully activate the solution to this security issue? If so, what are the steps?

2. Which CloudLinux component exactly (Cagefs or SecureLinks or both) is the solution to this security issue?

3. If LVE is disabled by setting LVE_ENABLE to no, would the solution to the security issue still remain in place?

4. Is there a need to reboot the server after setting LVE_ENABLE to no?

Thanks in advance.
Rate this post:
  1. 20.03.2013 09:03:44
  2. # 1
Igor Seletskiy Accepted Answer
Posts: 1200
Joined: 09.02.2010
0
Votes
Undo
1. Yes, you need to install CageFS as well, and enable SecureLinks:
http://docs.cloudlinux.com/index.html?installation2.html
http://docs.cloudlinux.com/index.html?securelinks.html

2. You need both.

3. No, LVE has to be enabled for it to work.
4. Yes.
  • Page :
  • 1


There are no replies made for this post yet.
Be one of the first to reply to this post!
Guest
Submit Your Response
Upload files or images for this discussion by clicking on the upload button below. Supports gif,jpg,png,zip,rar,pdf
• Insert • Remove Upload Files (Maximum File Size: 2 MB)
Captcha
To protect the site from bots and unauthorized scripts, we require that you enter the captcha codes below before posting your question.