CageFS is one of the core features of CloudLinux. It is a virtualized, per-user file system that uniquely encapsulates each cPanel users, preventing users from seeing each other and viewing sensitive information. CageFS prevents a large number of attacks, including most privilege escalation and information disclosure attacks. It is design to add security to cPanel-based shared hosting environment.
- Users only have access to safe files.
- Users cannot see other users and have no way to detect the presence of other users or user names on the server.
- Users cannot see server configuration files, like Apache config files.
- Users have a limited view of their own processing file system, and cannot see other users’ processes.