« önceki sonraki »
Sayfa: [1]

Gönderen Konu: directadminden sunucu açıkları için çözüm önerileri  (Okunma sayısı 403 defa)

GuvenliHost

  • Yönetici
  • Kahraman Üye
  • *****
  • İleti: 514
  • Karma +10/-0
    • Profili Görüntüle
directadminden sunucu açıkları için çözüm önerileri
« : 25 Mart 2010, 09:42:16 »
Hello,
 
Are you asking how to prevent cgi-bin files from seeing the system?
 
There are a few things you can do, in varying levels of difficulty.
 
1) The simplest, and the one I recommend would be to secure the user home directories with the secure_access_group method:
DirectAdmin Versions
 
this makes it so that files for each user cannot be seen by other Users.
 
2) The more complex, but complete solution is to jail the cgi-bin files, but that takes up a huge amount of space, is far more complex and has a higher likelyhood of not working due to it's complexity.
Also, it's classified as beta, and likely will remain there, as development on it has ceased.
DirectAdmin Knowledge Base
 
 
3) Other various security tips, not directly related to your question:
DirectAdmin Knowledge Base
 
 
If you don't want to allow cgi-bin access at all (easiest solution), type:
chmod 0 /usr/sbin/suexec
 
to enable it again, type:
chmod 4755 /usr/sbin/suexec

Thank you,
 
John
-----------------------------------------------------
DirectAdmin Web Control Panel
DirectAdmin Web Control Panel
Moderatöre rapor et   Kayıtlı
Sayfa: [1]
« önceki sonraki »