Hi, i am running the latest sentora version 1.0.3 on an ubuntu 14.04.06 virtual server.
any user can just create a php file and execute that command.
I understannd that shell_exec cmd should be disabled but it is a function that is much needed in many scripts.
I found that "bug" while i was writing a module to deal with ssl certificates and had to read some files in order to deside if i will update them or not.
Anuway i use sentora for personal use only so i have no problem with that function, just thought to let you know.
I find sentora a good panel but some needed functions are missing.
Btw how can i use the zsudo binary to restart apache after ssl creation?
Have a nice day
any user can just create a php file and execute that command.
I understannd that shell_exec cmd should be disabled but it is a function that is much needed in many scripts.
I found that "bug" while i was writing a module to deal with ssl certificates and had to read some files in order to deside if i will update them or not.
Anuway i use sentora for personal use only so i have no problem with that function, just thought to let you know.
I find sentora a good panel but some needed functions are missing.
Btw how can i use the zsudo binary to restart apache after ssl creation?
Have a nice day
