ENSupport
05-27-2003, 06:41 PM
Huh?
 | View Full Version : What is so secure about ensim? tandem 05-27-2003, 06:52 PM Huh? Secure in what sense? An ensim box can get hacked just like any other box on the net. :eek: Do you mean the new virtual file system? ENSupport 05-27-2003, 07:43 PM I mean like everyone trashes cpanel calling it unsecure and saying ensim is ultra safe etc. Senad 05-27-2003, 08:40 PM No, ensim is a little bit more secure than CPanel. Less bugs basically which make hacking it a little harder. This does not mean that it is hard to hack. Anything connected to the internet can be hacked. It just ensim contains less bugs that will make hacking a little bit harder. There is a hack in CPanel that has been known for years and they still have not fixed it :(..or at least I don't think they have ENSupport 05-27-2003, 09:26 PM So basicly its just another advertisment hype :) Morphix 05-27-2003, 09:58 PM Originally posted by ENSupport So basicly its just another advertisment hype :) I don't think that its just another ad hype, on the other hand I'm also not familiar with Ensim, but I can point out the famous guestbook exploit Cpanel used to have, and there are other unknown, non-public exploits in Cpanel, perhaps more than there are in Ensim. I hope that one day some programmer would take the time and look into these control panels and share with us his findings. UmBillyCord 05-27-2003, 10:07 PM It has a VFS. You can lock down customers into jailed environments. Try this. Log in with SSH and see if you can use server level commmands like top, or try and move around to other directories. With Ensim you can not. Also, this can be applied with CGIs too. You can jail those so exploitable scripts can not be executed to gain root access. The Ensim selling point on improved security is just at the customer level really. Not at the box. As stated before, anything on the net can be hacked. ENSupport 05-27-2003, 10:23 PM You can do that with chroot jail... UmBillyCord 05-27-2003, 10:27 PM Originally posted by ENSupport You can do that with chroot jail... Yeah. And most Rack Shack admins even know what that means. You can do thousands of things outside the box with any CP. But with Ensim, I know my resellers who don't know a chroot from a treeroot will at least have a GUI-based option. chet 05-28-2003, 01:00 AM While cpanel fans love to say - it is updated all the time - i think most ensim admins cringe at that idea. Past security/bug fixes, ensim is slow on upgrades and I am fine with that. Most of my customers just want hosting and email, all the cpanel updates just make it more likely to have a bug or security issue occur. The more often you update, the more often you open the chance of a new bug. Chet |