How to prevent linux users of a hosting server from exposing 777 permissions on files and directories?

O

Oleg Burca2014-06-10 17:56:00

linux

Oleg Burca, 2014-06-10 17:56:00

Hello!

Actually, the question is:
Is there any method to prevent users of a hosting server (based on linux) from setting permissions 777 (assign a maximum of 755, for example) to files and directories?

I manage a hosting server, it has already happened twice that users uploaded some left scripts and set permissions to 777 because "something is not working", then spam, then the IP address in the blacklist.
I want to protect the server, it has this kind of vulnerabilities.

Reply

Answer the question

In order to leave comments, you need to log in

4 answer(s)

X

xandox, 2014-06-10
@xandox

Perhaps a well-configured SELinux can help

O

Optimus, 2014-06-10
Pyan @marrk2

What was the point of such hosting if I can’t upload a file to php there or install a SAP script? (all this most often requires rights 777)

S

skalmi, 2014-06-11
@skalmi

as an option, try to mount the file system with noexec , or you can make the default umask weaker for everyone (something like umask 000) and at the same time disable chmod for execution by all users and leave it only for the administrator

V

Vlad Zhivotnev, 2014-06-16
@inkvizitor68sl

Why do you need such a hosting server?