Prevent symbolic link attacks on your servers

 

 

SecureLinks

SecureLinks is a kernel-level technology that prevents all known symbolic link (symlink) attacks. It enhances the security level of the servers even further and prevents malicious users from creating symbolic link files (where an attacker tricks Apache Web server to read some other user’s PHP config files).

CageFS is extremely effective at stopping most information disclosure attacks, in which a hacker can read sensitive files like /etc/passwd. However, in some cases, CageFS won’t be able to protect against symbolic link attacks. For example, on cPanel servers, it is not enabled in the WebDAV server, cPanel file manager, and webmail, as well as some FTP servers that don’t include proper change rooting. This allows attackers to create symlinks or hardlinks to sensitive files like /etc/passwd and then use WebDAV, filemanager, or webmail to read the content of those files. With CloudLinux OS SecureLink, you can prevent such attacks by keeping malicious users from creating symlinks and hardlinks to files that they don’t own.

 

 

 

Highly Compatible

Enjoy the increased stability of CloudLinux OS without sacrificing compatibility. It works with all
major control panels and is compatible with most software commonly used with CentOS and RHEL.

Easy to Get Started

A single script converts existing servers without any customer configs or data changes.
A CentOS-like interface makes you feel instantly at home. It is highly compatible and works
with all software commonly used with CentOS and RHEL.

If you have any questions, please email sales at [email protected]