Filesystem Permissions

Out of interest, what do you guys tend to remove world-readable/executable access to on your servers? configs, logs, bins etc.

I would be particularly interested to know if anyone has bothered removing world read access on cpanel config and log files! Quite a bit of potentially sensitive information can be gained by looking through the cpanel files.

Cheers

 

 

 

 

Top