create new cPanel user not owned by root

jimlongo

Well-Known Member
Mar 20, 2008
237
16
68
I'm trying to create a new cPanel account.
Whenever i do it's owned by root. This allows shell access outside of the domain.

How do i create a new account without root access?

Thanks,
 

Infopro

Well-Known Member
May 20, 2003
17,113
507
613
Pennsylvania
cPanel Access Level
Root Administrator
Twitter
When creating the Package you gave the user, there was a section at bottom of the Package Creation screen with an option for Shell Access. Just because an account is owned by root does not give them shell access.

WHM » Server Configuration » Tweak Settings, System tab, Default shell jailed [off]
 

jimlongo

Well-Known Member
Mar 20, 2008
237
16
68
You mean it can't be setup so that they can ssh to their home folder, just like they are restricted with ftp?
 

jimlongo

Well-Known Member
Mar 20, 2008
237
16
68
Can't i set it up so that they ssh to their home folder on the server. But they don't have access to anything below that.
 

quizknows

Well-Known Member
Oct 20, 2009
1,008
86
78
cPanel Access Level
DataCenter Provider
Any account with normal shell access will have read access to "/" and any other world-readible directories like /etc/. This is normal, it's just how linux/unix works. What you want is a shell with chroot, but that's way easier said than done. I don't even think jailshell actually chroots the user, but I could be wrong on that. You'd probably need cloudlinux with CageFS to prevent shell/SFTP accounts from reading above their home directories. Keep in mind just because they can see something doesn't mean they can change anything.