How to secure SFTP against symlink attack?

The problem is that the symlink looks different in the chrooted environment and from the point of Apache/webserver view.

Unless the symlinks are necessary for the users, the obvious option is to forbid users connecting over sftp to create symlinks. You can do that using a parameter to sftp-server:

internal-sftp -P symlink

Tags:

Sftp

Symlink

Related

Can MitM attack be avoided without using a 3rd party? Should web applications that are only accessible from a LAN be held to the same security standards as publicly accessible websites? Is there a inherent security threat to having border security receive your passwords? What security considerations are there when developing a random password generator? Should I use a SSL in my test domains? Why local links are disabled by default in modern browsers? Is it possible to hide your MAC address before connecting to open wifi? Is Acronis True Image encryption secure? Is authentication using Facebook/Google considered good practice? Intercepting Android app traffic with Burp Does an ISO27001 audit require users to reveal their passwords? How to implement reset password for a password manager

Recent Posts