Tweet
In the linksafe update announcement, it states the following:
> CAG-714: cloudlinux-linksafe package should turn off symlink traversal protection by default.
What does this mean exactly?
Does this simply involve the two settings in /etc/sysctl.conf
fs.protected_symlinks_create = 1
fs.protected_hardlinks_create = 1
Is there any impact for servers which get the update that would prefer to keep the cloudlinux linksafe protection on (i.e. will it stay on by default with servers that are updated?)
Thanks.
> CAG-714: cloudlinux-linksafe package should turn off symlink traversal protection by default.
What does this mean exactly?
Does this simply involve the two settings in /etc/sysctl.conf
fs.protected_symlinks_create = 1
fs.protected_hardlinks_create = 1
Is there any impact for servers which get the update that would prefer to keep the cloudlinux linksafe protection on (i.e. will it stay on by default with servers that are updated?)
Thanks.
Comment