I just applied an update to a server. The update provoked security issues.
PHP Dangerous FunctionsRisk level:High risk
Risk detail:[PHP 74] Dangerous functions that are not disabled are as follows:proc_open,putenv
Solution:1、[disable_functions] is not set in the [php.ini] file to disable dangerous functions such as system, exec, passthru, shell_exec, popen, proc_open, etc.
2、Tips: [disable_functions] is not set in the [php.ini] file to disable dangerous functions such as system, exec, passthru, shell_exec, popen, proc_open, etc.
Test type:Critical file permission checksRisk level:High risk
Risk detail:The following critical files or directories have permission errors:
/etc/shadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/security Current permissions: 755 : root Suggested changes to: 600 : root
/etc/gshadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/shadow Current permissions: 640 : root Suggested changes to: 400 : root
/etc/gshadow Current permissions: 640 : root Suggested changes to: 400 : root
Solution:1、On the [File] page, set the correct permissions and owner for the specified directory or file
I am searching in the forum for information.