Author: Jobair Alam Bipul

This author has written 78 articles
Symlink Protection for cPanel

Symlink Protection for cPanel

Symlink Protection for cPanel is much important . Symlink  attack occurs after the attacker has been able to read the contents of the /etc/passwd file and has enumerated the server’s users.

Symlink race condition vulnerability

If you enable both of the SymLinksIfOwnerMatch and FollowSymLinks configuration settings, Apache becomes vulnerable to a race condition through symlinks. This symlink vulnerability allows a malicious user to serve files from anywhere on a server that strict OS-level permissions do not protect.

Filesystem-level solutions :   Enable mod_ruid + jailshell for your apache webserver.

To enable this option, recompile Apache and then enable EXPERIMENTAL: Jailshell Virtual Hosts using mod_ruid2 and cPanel jailshell in WHM’s Tweak Settings interface (Home >> Server Configuration >> Tweak Settings).

Using cageFS

CageFS is a virtualized file system and a set of tools to contain each user in its own ‘cage’. This option is available on all cPanel-supported platforms today, and it is already included with CloudLinux.

(more…)

Continue ReadingSymlink Protection for cPanel
how to change hostname in centos using command line

how to change hostname in centos using command line

Hello,

Sometime we need to change server hostname , It can be possible to change host name by using SSH command line ;

1st we can check the current hostname by command :

hostname

outputs example : server1.bipul.me

Now , we change the hostname by editing network and hosts files . we can edit file by using nano or vi command ;

nano /etc/sysconfig/network

look in outputs and find  HOSTNAME value & change with new hostname ;
for example : HOSTNAME=”server2.bipul.me”
Save and close the file. (more…)

Continue Readinghow to change hostname in centos using command line