ln and PHP suEXEC bug

[masood_y]

Do you have any idea for patch PHP suEXEC with "ln" command?

 

[masood_y]

PHP suEXEC is enale on my server.
But users can link to outside him directory with "ln" and seee other sites configuration files.
And its a big security issue.

 

[mistwang]

Everything follow Linux/Unix file system permission, there is no magic.
Maybe, you should prevent user from execute "ln" from PHP by tighten the grip on php.ini .

 

[mistwang]

try tuning

http://www.litespeedtech.com/docs/webserver/config/security/#followSymbolLink

use "If Owner Match"

 

[masood_y]

Problem not solved by doing above tuning.
Please check your private message for see bug details.

 

[mistwang]

Also need to set http://www.litespeedtech.com/docs/webserver/config/security/#checkSymbolLink

to "Yes".

 

[masood_y]

Is not resolved too.

 

[mistwang]

There is no way to prevent the perl script from creating a symbolic link, unless you disable perl.
The best can be done is to block access to target file pointed to the symbolic link, above configuration changes does that.