The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

disable root access

Discussion in 'General Discussion' started by nikkii, Aug 8, 2009.

  1. nikkii

    nikkii Registered

    Joined:
    Aug 8, 2009
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    how can i disable root from logging into whm?
     
  2. Spiral

    Spiral BANNED

    Joined:
    Jun 24, 2005
    Messages:
    2,023
    Likes Received:
    7
    Trophy Points:
    0
    What in the world? :confused:

    Why do you want to disable root from WHM access?

    If you did that, you would effectively defeat the point of WHM as that is for managing your server and root is the account you use for master operations.

    It would neither be recommended nor wise to try to disable root from WHM on a Cpanel based server!

    (Doing so also does very little in terms of any added security benefit!)

    However, if you are concerned with someone using WHM outside of yourself,
    you can put in a IPTABLES filter to block connections to WHM to anyone other than yourself:
    (replace x.x.x.x above with your own IP address or CIDR range)

    You can partially limit root's access such as to reseller and cpanel accounts by checking the following item in Tweak Settings:
    The most important thing more than anything is to simply make sure that you have a strong password for root. Make it long, make it random, and include punctuation, mixed capitals, and numeric characters.
     
  3. nikkii

    nikkii Registered

    Joined:
    Aug 8, 2009
    Messages:
    2
    Likes Received:
    0
    Trophy Points:
    1
    I dont use the root account in whm, and have no need to have root allowed in whm. it would be an ideal security enhancement to add an option to deny root from logging into whm.
     
  4. Spiral

    Spiral BANNED

    Joined:
    Jun 24, 2005
    Messages:
    2,023
    Likes Received:
    7
    Trophy Points:
    0
    Not really because a great many scripts out there still make use of direct logins
    to WHM under root and you could run into issues if you tried to use any of those various addons, 3rd party applications, or scripts if root were not working.

    True more are using keys and API calls but not all of them and that is something to consider as well.

    Also, as I said, security gains would be negligible and weighed against breaking something, probably not a good idea as you gain little, lose more.

    I would however recommend disabling direct root login from your FTP (MUST!) and from SSH (Recommended).
     
Loading...

Share This Page