As as server administrator I would like an option in EasyApache to patch Apache for the Apache Symlink exploit
On servers that don't run CloudLinux Securelinks that allow .htaccess files a hacker that manages to hack a single account can then gain read access to any PHP scripts that
are readable by Apache's user "nobody".
Once a hacker gains read access to the script's configuration file (that contains the database password) he can then run SQL commands on that sites database (changing for
example Wordpress username and password).
Some big hosts have had all their Wordpress instances hacked because of this flaw and while Apache slowley descides to improve their symlink management we would like
cPanel to give us an option in EasyApache to patch the Apache core to replace the FollowSymLinks option with SymLinksIfOwnerMatch.
This patch will only be effective when there isn't a race condition as apache does not protect the SymLinksIfOwnerMatch option against this problem but it will provide the
most effective way currently available for hosts that don't have Coudlinux and need .htaccess support for their customers.
Here's some more information about this exploit :