Home > Server Administration > Linux Server Tips > Insecure Commands

Disable Insecure Commands on Linux

For security, it is better to limit access to compilers and programs that allow file download to user root only. This way only user root can compile software or download files to the server.

You can do this with following commands.

chmod 700 /usr/local/bin/lynx
chmod 700 /bin/tar
chmod 700 /usr/bin/cc
chmod 700 /usr/bin/gcc
chmod 700 /usr/bin/perlcc
chmod 700 /usr/bin/yacc
chmod 700 /usr/bin/byacc
chmod 700 /usr/bin/bcc
chmod 700 /usr/bin/kgcc
chmod 700 /usr/bin/i386*cc
chmod 700 /usr/bin/*c++
chmod 700 /usr/bin/*g++
chmod 700 /usr/bin/rcp
chmod 700 /usr/bin/wget
chmod 700 /usr/bin/lynx
chmod 700 /usr/bin/links
chmod 700 /usr/bin/scp