Announcement

Collapse
No announcement yet.

CageFS and phpfcgi

Collapse
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    CageFS and phpfcgi

    Hi,

    I was testing CageFS in our staging server installed with CloudLinxu 6 and Cpanel. Users sshed in to the server with CageFS cant see other user home directories and not them even in /etc/passwd. But if I create a php file with

    Code:
    $output = shell_exec(cat /etc/passwd);

echo "

$output

";

?>
    I can see all usernames in that. Is there anyway we can prevent this ?

    We run fcgi with a wrapper

    Code:
    LoadModule fcgid_module modules/mod_fcgid.so

AddHandler fcgid-script .php

FCGIWrapper /usr/local/cpanel/cgi-sys/php-fcgi .php

MaxProcessCount 512

DefaultMaxClassProcessCount 3

DefaultMinClassProcessCount 0

MaxRequestsPerProcess 256

MaxRequestInMem 25165824

FcgidMaxRequestLen 20971520

IPCCommTimeout 300

ProcessLifeTime 60

IdleScanInterval 15
    Tags: None
  • #2
    This means that suexec doesn have our cagefs patch.
    What kind of control panel are you using?

    Comment

    • #3
      Sorry, ignore the question about control panel.
      Try rebuilding apache with easyapache -- it should start working. If it doesnt -- something blocks rebuild of suexec with our patches. Contact our support, and we will investigate

      Comment

      Previous template Next
      Working...
      X