Even if your users do not have shell access kernel exploits can be
triggered through PHP system,exec.. and many other ways. Are you able
to run something like auditd(8) to monitor file access. It can incur
performance degradation but you won't run it forever anyway.
triggered through PHP system,exec.. and many other ways. Are you able
to run something like auditd(8) to monitor file access. It can incur
performance degradation but you won't run it forever anyway.
Ed <http://blog.eonsec.com>
...
[ more ]