CloudLinux busted — twice
Posted Jun 28, 2012 19:50 UTC (Thu) by geofft
Parent article: CloudLinux busted — twice
We do a "hack", which is not a pretty one, populating /sys with
.htaccess files. This is really needed only by shared hosters,
where one of the end users on the server, could be a hacker and
could create symlinks that would later be followed by apache to
read privileged information.
So, uh, why can't they just write their own file system that just exposes a .htaccess in every single directory, and union-mount / overlayfs / aufs it on top of /sys?
to post comments)