• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

/etc/passwd file access for Plesk 12 and 11

Roadkill-NZ-

New Pleskian
Hey all,

I am just wondering if Plesk needs to have read access for everyone (rw-r--"r--") for the /etc/passwd file?

Can you please advise whether it needs this access to it? As locking it down can stop some potential security issues with PHP being able to access it when run in a Web browser.

So far testing I have done hasn't produced any noticeable effects with using Plesk.

I would expect that this might affect users when accessing SSH, but as Plesk has a user with higher access, this may not be a problem for a hosting server.

Cheers,

Roadkill-NZ-
 
Back
Top