Code: p637 Severity: Warning
Description: Attempted cc command access via web Impact: Attempt to compile a binary on a host. Corrective: Webservers should not be allowed to view or execute files and binaries outside ofit's designated web root or cgi-bin. This command may also be requested on acommand line should the attacker gain access to the machine. Wheneverpossible, sensitive files and certain areas of the filesystem shouldhave the system immutable flag set to prevent files from being addedto the host. On BSD derived systems, setting the systems runtimesecurelevel also prevents the securelevel from being changed. (note:the securelevel can only be increased).
|
