cPanel & WHM Version 98 has been released, and brings a slew of great updates. Take a look at what is included, and then upgrade today!

cPanel Hardened Kernel for Centos 7.x - to prevent symlink attacks

uk01 shared this idea 4 years ago
Not Planned

As a server administrator I would like cPanel to provide a hardened kernel for CentOS 7 similar to the one provided for CentOS 6, in order to help secure my server against symlink attacks and to resolve the Security Advisor alert on CentOS 7 servers.

Replies (4)

photo
3

I still see no answers here... EA4 keeps sending warnings through maldet that the system is vulnerable and I believe that most system administrators (especially when setting up new servers) use centos 7 nowadays.

photo
5

Yes I wish they'd do this as I can't find a solution to sym links using Centos 7, suphp etc. The only solution is to turn on the bluehost option, which is not recommended. A hardened kernel would be perfect.

photo
2

Yes, highly recommended to secure the world and safe internet.


It is requested to provide cPanel Hardened Kernel for CentOS 7 by default instead of BlueHost including container base systems like OpenVz etc.

photo
1

Hi all! It looks like our update to this post got lost in the failure earlier this year. We won't be providing a kernel update for symlink attacks and the cPanel provided hardened kernel has been deprecated. We recommend that you install CloudLinux's KernelCare offering. You can read more about it in our blog post from October 2017: https://blog.cpanel.com/kernel-based-symlink-protection-for-all-thanks-to-cloudlinux/

Replies have been locked on this page!