How we can close commad ls and cat and .. ?

robocap · Post by **robocap** » 19 Jan 2007, 16:38

Hello,
i have dedicated server and install csf and lfd

will time i upload one shell c99 on server and run them,and in part :: Command execute :: and enter cat /var/cpanel/accounting.log, i can see all user and all site in my server

and if i enter command ls /home/[user]/public_html i can enter to any user that want

Do you have away ?
i close them,until hacker can`t see all site and see all files server

Thanks

Post by **chirpy** » 20 Jan 2007, 10:07

You would have to enable phpsuexec to prevent users browsing outside of their accounts like that. That's one of the major security flaws with PHP.

robocap · Post by **robocap** » 20 Jan 2007, 10:13

Hello,
means will time i want update apache,must select PHP suEXEC Support and click on start build?

i think PHP suEXEC Support maybe create problem for all user
Do you think?

niyaz · Post by **niyaz** » 23 Jan 2007, 11:10

Hello

i have a decated server
and i have a problem by hacker shell files............ Too

i Build apachi and enable phpsuexec

but hacker can hack me again

please help me !

thankS