Hi,
figured that the best way to hack server is to hack to end-user itself...
some of my customers got FTP access compromised and some hacker dude used it to run, in cgi-bin...
some very malicious perl script.
so my question is how can i set every user.conf option cgi=off
and prevent users from running perl code from a txt file...or what ever the fake extension used.
actually the only possibility i figured is to chmod /usr/bin/perl 700
any better suggestion ?
Thanks
figured that the best way to hack server is to hack to end-user itself...
some of my customers got FTP access compromised and some hacker dude used it to run, in cgi-bin...
some very malicious perl script.
so my question is how can i set every user.conf option cgi=off
and prevent users from running perl code from a txt file...or what ever the fake extension used.
actually the only possibility i figured is to chmod /usr/bin/perl 700
any better suggestion ?
Thanks