Code: p657 Severity: Warning
Description: Attempted rm command access via web Impact: Attempt to delete files on a webserver. Corrective: Webservers should not be allowed to view or execute files and binaries outside of it's designated web root or cgi-bin. Whenever possible, sensitive files and certain areas of the filesystem should have the system immutable flag set to negate the use of the rm command. On BSD derived systems, setting the systems runtime securelevel also prevents the securelevel from being changed. (note: the securelevel can only be increased)
|
