Cloudlinux and cPanel alliance for High Security

Worried about your website security? Cloudlinux and cPanelhave come together for providing an ideal solution for safeguarding confidentiality of your website data and details. The best alliance against online attacks and threats.

Cloudlinux OS is the most preferred operating system with high stability and security. Most web hosts using Cloudlinux OS have reported that use of Cloudlinux OS has led to the higher uptime and significant reduction in reboots and account suspensions. The most used cloudlinux services in the web hosting industry are CloudLinux CDN and DNS services. cPanel, a linux based control panel with rich feature set, provides all its clients user-friendly GUI to handle web hosting service aspects.

Now cPanel partnered with Cloudlinux for endeavouring their clients with Free protection against symlink attacks specially for CentOS 6 and 7. Cloudlinux has announced for expanding kernelcare security free for CentOS 6 and 7 without the burden for buying kernelcare licence.

Symlink attack s are the most destructive attacks in web hosting industry. Symbolic link attack is way too devastating exploitation to gain complete access over the server, when the server is in shared environment. To provide a safer environment for all web hosting companies against symlink attacks, cPanel has joined hands with cloudlinux. This kernelcare security patch is a strong barrier against symlink attacks.

Kernelcare was developed to protect severs against security threats without rebooting servers. Cloudlinux and cPanel have been extending this security patch for helping their respective clients, specially to safeguard shared hosting servers against symlink attacks.

Install kernelcare and run patchset to secure your server for free without buying a licence. s Below shows the steps to run the security patchset on Kernelcare

  • First, install KernelCare client:

    curl -s https://repo.cloudlinux.com/kernelcare/kernelcare_install.sh | bash

  • Enable free patch type, this patch type doesn’t require a licence.

    kcarectl –set-patch-type free

    The ‘free’ patch will be applied on the next update. During the installation, you should see something similar to:

    OS: CentOS6

    kernel: kernel-2.6.32-696.el6

    time: 2017-06-22 16:13:40

    uname: 2.6.32-642.15.1.el6

    kpatch-name: 2.6.32/symlink-protection.patch

    kpatch-description: symlink protection // If you see this patch, it mean that you can enable symlink protection.

    kpatch-kernel: kernel-2.6.32-279.2.1.el6

    kpatch-cve: N/A

    kpatch-cvss: N/A

    kpatch-cve-url: N/A

    kpatch-patch-url: https://gerrit.cloudlinux.com/#/c/16508/

    kpatch-name: 2.6.32/symlink-protection.kpatch-1.patch

    kpatch-description: symlink protection (kpatch adaptation)

    kpatch-kernel: kernel-2.6.32-279.2.1.el6

    kpatch-cve: N/A

    kpatch-cvss: N/A

    kpatch-cve-url: N/A

    kpatch-patch-url: https://gerrit.cloudlinux.com/#/c/16508/

  • Edit the file /etc/sysconfig/kcare/sysctl.conf add the lines: fs.enforce_symlinksifowner = 1

    Execute: sysctl -w fs.enforce_symlinksifowner=1

Now protect your servers running on CentOS 6 and 7 platform against symlink attacks with aid of new security patch by Cloudlinux and cPanel.

Scopehosts is partnered with cloudlinux to stimulate faster loading of your website and ensuring absolute security of website data and cPanel as well as provision you to ease and managed every element of your web hosting account. We provide Free cPanel with Managed VPS hosting for effortless handling of hosting services.

Leave a Reply

Your email address will not be published. Required fields are marked *