The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Backdoor - Help yourself

Discussion in 'Security' started by Not_Impressed, Mar 16, 2012.

  1. Not_Impressed

    Not_Impressed Registered

    Joined:
    Mar 16, 2012
    Messages:
    1
    Likes Received:
    0
    Trophy Points:
    1
    cPanel Access Level:
    Root Administrator
    Can you tell me is it common practice for one of your technical specialists when given root access to a server to leave a shell key in place?
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    14,468
    Likes Received:
    196
    Trophy Points:
    63
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    Greetings, I would think the proper answer to your question would be, of course not.

    Do you have a ticket open right now or had one recently that you can provide me the ticket ID for please?

    If that ticket is closed, please feel free to reply to it to reopen. Or, open a new one. If you suspect that your server has been compromised you might want to seek professional assistance for a second opinion. You can find some of those, here:
    Sys Admin Services « Application Catalog
     
  3. cPanelTristan

    cPanelTristan Quality Assurance Analyst
    Staff Member

    Joined:
    Oct 2, 2010
    Messages:
    7,623
    Likes Received:
    21
    Trophy Points:
    38
    Location:
    somewhere over the rainbow
    cPanel Access Level:
    Root Administrator
    Actually, since we aren't always certain when a ticket might be resolved, we might well leave a public key in place in WHM's Manage Root's SSH Keys. It is not going to be intentional that the key was left but simply a factor that we don't know (unless you tell us and ask us to remove the key) that it has been fixed and we no longer need to access the machine for that issue.

    You are always welcome to remove the key or deauthorize it after the ticket has been resolved. After all, you know best when the issue is fixed.
     
Loading...

Share This Page