create new cPanel user not owned by root

[jimlongo]

I'm trying to create a new cPanel account.
Whenever i do it's owned by root. This allows shell access outside of the domain.

How do i create a new account without root access?

Thanks,

 

[Infopro]

When creating the Package you gave the user, there was a section at bottom of the Package Creation screen with an option for Shell Access. Just because an account is owned by root does not give them shell access.

WHM » Server Configuration » Tweak Settings, System tab, Default shell jailed [off]

 

[jimlongo]

You mean it can't be setup so that they can ssh to their home folder, just like they are restricted with ftp?

 

[Infopro]

I'm not sure I'm following your question properly.

 

[jimlongo]

Can't i set it up so that they ssh to their home folder on the server. But they don't have access to anything below that.

 

[Infopro]

The docs might be helpful to you:
Manage Shell Access - cPanel Documentation

 

[quizknows]

Any account with normal shell access will have read access to "/" and any other world-readible directories like /etc/. This is normal, it's just how linux/unix works. What you want is a shell with chroot, but that's way easier said than done. I don't even think jailshell actually chroots the user, but I could be wrong on that. You'd probably need cloudlinux with CageFS to prevent shell/SFTP accounts from reading above their home directories. Keep in mind just because they can see something doesn't mean they can change anything.