cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Highlighted
Contributor
Contributor
130 Views
Registered: ‎09-18-2018

Busybox WebServer Security

Hi all,

I tried to configured Webserver by enabling httpd from Petalinux 2018.3 and it worked well.

However, I am having hard time figuring out how secure is the httpd server out of the box. Since everything in petalinux is by default running with root privilege, does this mean this httpd might be a weak point of the system, and it might allow user to travese outside of "/srv/www/" directory or executing malicious code? 

Thanks!

0 Kudos
0 Replies