How to Prevent Symlink Attacks
ad Impact of Symlink - Suppose you own a small hosting company with a Linux Box, & 1337 sites are hosted there. If an attacker gains access to any single site on your server, he can easily create a symbolic link to / directory & then putting the document root afterwards it. Now the attacker can easily read sensitive files, that can be the configuration file of your billing system. Since, he has local access, now he can easily connect to the mysql & pwn all your clients, & the whole company.
How Symlink is Created - A basic linux command is used in creating symlink. i.e,
ln -s source_file link_name
:: 0x02 Protecting ::
1.Change the permission of /bin/ln to 400.
2.Locate php.ini by command- "Locate php.ini” (without quotes) Edit the main php.ini & disable symlink & proc_open.
3.If you have a shared host, & it is vulnerable to symlink.Then, change the permission of your configuration files to 400.
4. Turn PHP safe_mode ON
Was this answer helpful?
First make sure DDOS attack is not from open recursive DNS settings. To check and fix that issue...
This tutorial will teach you how to use the IP Deny Manager to block access to your web site from...
What is mod_security or modsecurity? ModSecurity is an open source intrusion detection and...
If you run your own mail server you'll want it to run spam filtering software to reduce the...
Like Apache, it is not good to expose your PHP information to the public. Please follow the below...