LiteSpeed Technologies
Download Download     Blog Blog     Wiki Wiki     Forum Forum     Store     Contact Contact    

Go Back   LiteSpeed Support Forums > LiteSpeed Web Server > Feedback/Feature Requests > Writable Directory Security

Reply
 
Thread Tools Display Modes
  #1  
Old 03-08-2010, 08:03 PM
QuantumNet QuantumNet is offline
Senior Member
  
Join Date: Nov 2007
Posts: 61
Default Writable Directory Security
Writable directories need to be detectable from within the apache configuration as well as the litespeed configuration.

This will add a greater level of security as we will be able to globally lock down writable directories so attackers cannot execute scripts within them

<Directory {if directoryPerms > 755}>
AllowOverride None
Options -Indexes
Options -ExecCGI
AddHandler cgi-script .php .php3 .php4 .phtml .pl .py .jsp .asp .htm .shtml .sh .cgi

</Directory>


This is currently doable via htaccess, but htaccess can be overwritten if perms are not correct.

It is also not controllable on a global level which is important for shared multi tenant server security. As we cannot monitor which directories the end user creates but we want to maintain a specific level of security for the system.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -7. The time now is 05:35 AM.



- Archive - Top
© Copyright 2003-2011 LiteSpeed Technologies, Inc. All rights reserved. Privacy Policy.