-
عضو انجمن
CP/WHM Configuration
سلام
داشتم در يك انجمن هكينگ چرخ ميخوردم كه كافيگ هاي مربوط Cpanel/Whm را گذاشته بودند.كه من نيمي از مراحل را روي سرور خودم اجرا كردم.و ميزارم كه دوستان ديگه هم استفاده كنند.اميدوارم مفيد واقع شود.
CP/WHM Configuration
############################
WHM - Server setup - Tweak Security:
-------------------------------------
Enable php open_basedir protection
Enable mod_userdir protection
Disable Compilers for all accounts(except root)
Enable Shell Bomb/memory Protection
WHM - Account Functions:
-------------------------
Disable cPanel Demo Mode
Disable shell access for all accounts(except root)
WHM - Service Configuration - FTP Configuration:
-------------------------------------------------
Disable anonymous FTP access
WHM - MySQL:
-------------
Set some MySQL password(Don't set the same password like for the root access)
-If you don't set MySQL password and if someone upload shell(E.G c99) on some site on server he will be able to login into db with username "root" without password
and delete/edit/download any db on that server
WHM - Server Setup:
--------------------
Go to Server Setup and enable suEXEC and PHPsuEXEC
When PHP runs as an Apache Module it executes as the user/group of the webserver which is usually "nobody" or "apache".
PHPsuEXEC changes this so scripts are run as a CGI. Than means scripts are executed as the user that created them.
With PHPsuEXEC script permissions can't be set to 777(read/write/execute at user/group/world level)
-
تعداد تشکر ها ازNikihost به دلیل پست مفید
-
July 6th, 2009 13:37
# ADS