Symlink Protection for cPanel

Symlink Protection for cPanel is much important . Symlink  attack occurs after the attacker has been able to read the contents of the /etc/passwd file and has enumerated the server’s users.

Symlink race condition vulnerability

If you enable both of the SymLinksIfOwnerMatch and FollowSymLinks configuration settings, Apache becomes vulnerable to a race condition through symlinks. This symlink vulnerability allows a malicious user to serve files from anywhere on a server that strict OS-level permissions do not protect.

Filesystem-level solutions :   Enable mod_ruid + jailshell for your apache webserver.

To enable this option, recompile Apache and then enable EXPERIMENTAL: Jailshell Virtual Hosts using mod_ruid2 and cPanel jailshell in WHM’s Tweak Settings interface (Home >> Server Configuration >> Tweak Settings).

Using cageFS

CageFS is a virtualized file system and a set of tools to contain each user in its own ‘cage’. This option is available on all cPanel-supported platforms today, and it is already included with CloudLinux.

(more…)

Continue ReadingSymlink Protection for cPanel

How to install imagemagick in a cpanel server

imagemagik is an addon for your cPnel server that allows for image manipulation. ImageMagick is a software suite to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats (over 100) including DPX, EXR, GIF, JPEG, JPEG-2000, PDF, PNG, Postscript, SVG, and TIFF. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images, adjust image colors, apply various special effects, or draw text, lines, polygons, ellipses and Bézier curves. Official web site : http://www.imagemagick.org/

check whether the Imagemagick installed or not

You can use the following way to figure it out from the command line.

1, /scripts/checkimagemagick
2, /usr/bin/convert --version

Install imagemagick in a cpanel server: (more…)

Continue ReadingHow to install imagemagick in a cpanel server

How to install ConfigServer Explorer on cPanel server

ConfigServer Explorer provides you with a full featured Filesystem ,  Functions for files and directories:

  • Copy
  • Delete
  • Rename
  • Move
  • CHMOD (change permissions)
  • CHOWN (change ownership)

ConfigServer Explorer

How to install ConfigServer Explorer on cPanel server

Open a Shell Terminal (e.g. PuTTY) and SSH to your server. Run the following commands:

(more…)

Continue ReadingHow to install ConfigServer Explorer on cPanel server
HostArmada - Affordable Cloud SSD Web Hosting