Security of user crontabs

Discussion in 'Tips/Tricks/Mods' started by radim_h, Oct 16, 2008.

  1. radim_h

    radim_h Member

    Hello guys,

    i have question regarding new crontabs in ispconfig..

    1. is it running under user account or root account?
    I'm just imaging someone created record in crontab like
    rm -rf / What will happen then?

    Generally is it big risk to allow users crontabs?

    2. is it possible to restrict contabs just to certain type of scripts eg. .php scripts?
  2. sjau

    sjau Local Meanie Moderator

    I tend to say user crontabs run under the user and not root. It would just be too risky otherwise.
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    The scripts are run under the priviliges of the user and not as root.

    No. And this would not be much help security wise as a user would be able to run exec('rm -rf /'); inside the php script.

Share This Page