Quote:
Originally Posted by romanepo
I see my server effect Symlink Attack. Which modify one by one all site. How to i stop running this attack and protect my server.
|
To
limit this (prolly something I forgot):
- chroot Apache,
- and don't use excessive mounts inside the chroot area,
- and set restrictive access permissions,
- and set deny Apache to follow symbolic links (also see "SymLinksIfOwnerMatch"),
- and deny users from overriding Apaches configuration (including use of SSH or equivalent shell access),
- and harden PHP to have a per user open_basedir,
- and make Apache / PHP exec scripts as the users Id.
