How to migrate Migrate to EasyApache 4 cPanel server
migrate Migrate EasyApache 3 to EasyApache 4 its too Easy :) Just run the following command : /usr/local/cpanel/scripts/migrate_ea3_to_ea4 --run This…
migrate Migrate EasyApache 3 to EasyApache 4 its too Easy :) Just run the following command : /usr/local/cpanel/scripts/migrate_ea3_to_ea4 --run This…
Symlink Protection for cPanel is much important . Symlink attack occurs after the attacker has been able to read the contents of the /etc/passwd file and has enumerated the server’s users.
If you enable both of the SymLinksIfOwnerMatch
and FollowSymLinks
configuration settings, Apache becomes vulnerable to a race condition through symlinks. This symlink vulnerability allows a malicious user to serve files from anywhere on a server that strict OS-level permissions do not protect.
To enable this option, recompile Apache and then enable EXPERIMENTAL: Jailshell Virtual Hosts using mod_ruid2 and cPanel jailshell in WHM’s Tweak Settings interface (Home >> Server Configuration >> Tweak Settings).
CageFS is a virtualized file system and a set of tools to contain each user in its own ‘cage’. This option is available on all cPanel-supported platforms today, and it is already included with CloudLinux.
Sometimes we need to disabled HTTP access to make down a website . Today I’m showing how to disable HTTP…
GHOST vulnerability affecting Linux systems was discovered in the C library of GNU / Linux (glibc) that gives control to attackers without requiring system credentials.
GHOST creates a buffer overflow that affects all the gethostbyname*() functions in the glibc library. These functions change a hostname into an IP addresses. A hacker exploiting this can gain complete access of the Linux machine.
CryptoPHP is a threat that uses backdoored Joomla, WordPress and Drupal themes and plug-ins to compromise webservers on a large scale. By publishing pirated themes and plug-ins free for anyone to use instead of having to pay for them, the CryptoPHP actor is social engineering site administrators into installing the included backdoor on their server.
Picture : foxitsecurity.files.wordpress.com
How To Detect And Clean CryptoPHP Malware?
(more…)