Hello,
If the setting wasnt defined previously, the protection will be turned off to avoid the issues with users transferring to a new server, for example.
And if the protection was enabled before the update or installing CageFS, the settings wont be touched.
-
CAG-714
In the linksafe update announcement, it states the following:
> CAG-714: cloudlinux-linksafe package should turn off symlink traversal protection by default.
What does this mean exactly?
Does this simply involve the two settings in /etc/sysctl.conf
fs.protected_symlinks_create = 1
fs.protected_hardlinks_create = 1
Is there any impact for servers which get the update that would prefer to keep the cloudlinux linksafe protection on (i.e. will it stay on by default with servers that are updated?)
Thanks.
Leave a comment: