Prevent Creating Symbolic Links For Non Root Users .

Ideal place for discussions related to Linux/Windows server security, Apache, MySQL, MS SQL and PHP, including tutorials and questions.
HR-ADMIN
Site Admin
Posts: 22
Joined: Sat Mar 16, 2013 9:54 pm

Prevent Creating Symbolic Links For Non Root Users .

Postby HR-ADMIN » Fri May 31, 2013 11:44 am

Creating symbolic links from a compromised account is a typical tactic that hackers use to gain access to files not owned by the account that they have hacked. To help prevent this you can apply a patch that was developed by Steven Ciaburri over at Rack911.com.

To install the patch run the following commands from ssh.

wget http://layer1.rack911.com/before_apache_make -O /scripts/before_apache_make
chmod 700 /scripts/before_apache_make



Then recompile apache using easyapache

/scripts/easyapache


You can also check a server for symbolic links that have already been created by running

find /home*/*/public_html -type l


If you want to remove the patch just do the following


rm -f /scripts/before_apache_make
#Rebuild apache after.
/scripts/easyapache
Hostripples - Leaders in Linux Hosting
http://www.hostripples.com

http://blog.hostripples.com
HostRipples | Domain Name Registration & $1 Web Hosting

Christina9
Posts: 2
Joined: Thu May 30, 2013 12:51 pm

Re: Prevent Creating Symbolic Links For Non Root Users .

Postby Christina9 » Fri May 31, 2013 12:17 pm

Thanks for the usefull post .. we have tried it and working fine .. :)

Image


Return to “System Security”

Who is online

Users browsing this forum: No registered users and 1 guest