Community Forums
Connect with us on LinkedIn
SFTP Security
  
+ Reply to Thread
Results 1 to 3 of 3
  1. 06-22-2008 05:16 AM #1
    imagize
    imagize is offline
    Member
    Join Date
    Oct 2007
    Posts
    7

    Default SFTP Security

    Why is that when a user logs in via SFTP that they can traverse out of their home directory and go into important directories like /usr and /var? These are normal user accounts not root and they don't even have shell access.

    How do you disable SFTP or contain users to their own home directories when using SFTP?

    Thanks
    Reply With Quote Reply With Quote
  2. 06-23-2008 03:33 PM #2
    cPanelDavidG
    cPanelDavidG is offline
    Technical Product Specialist cPanelDavidG's Avatar
    Join Date
    Nov 2006
    Location
    Houston, TX
    Posts
    11,189
    cPanel/Enkompass Access Level

    Root Administrator

    Default

    Quote Originally Posted by imagize View Post
    Why is that when a user logs in via SFTP that they can traverse out of their home directory and go into important directories like /usr and /var? These are normal user accounts not root and they don't even have shell access.

    How do you disable SFTP or contain users to their own home directories when using SFTP?

    Thanks
    Users can only browse these directories, they cannot perform modifications to any file they do not have access to. The ability to traverse outside of ~ is an artifact of using a *nix file system.
    Reply With Quote Reply With Quote
  3. 06-25-2008 04:12 AM #3
    chirpy
    chirpy is offline
    Super Moderator This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,495

    Default

    Indeed. It's also a fact of life of shared web hosting. For example, any perl script can also view the same files. It's why correct directory and file permissions settings are critical in a shared environment.
    Jonathan Michaelson

    Need your cPanel servers secured and tuned?
    cPanel Server Configuration, Security, Recovery and Antivirus/AntiSpam Services
    Developers of the most effective (and free) Firewall & Security Solution for cPanel Servers - csf
    http://www.configserver.com
    Reply With Quote Reply With Quote
«   Cpu problem: high iowait | Red Hat 5.2 »     
Similar Threads & Tags
Similar threads

  1. Creating SFTP
    By danielk in forum New User Questions
    Replies: 20
    Last Post: 07-30-2010, 02:16 PM
  2. JailShell for SFTP?
    By yeahoi in forum cPanel and WHM Discussions
    Replies: 0
    Last Post: 01-27-2008, 08:44 AM
  3. Sftp
    By seby in forum cPanel and WHM Discussions
    Replies: 1
    Last Post: 12-01-2007, 02:21 AM
  4. FTP vs SFTP
    By BraveX in forum New User Questions
    Replies: 3
    Last Post: 05-24-2007, 11:02 AM
  5. SFTP/SSH really concerns me! Security!
    By mr.wonderful in forum cPanel and WHM Discussions
    Replies: 5
    Last Post: 06-14-2004, 05:29 AM
Linkedin       Facebook       Twitter       RSS       Flickr       YouTube