Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is it safe to give ssh to users?

Discussion in 'Security' started by DjordjeB, Jan 27, 2018.

Tags:
  1. Gojko

    Gojko Well-Known Member

    Joined:
    Nov 24, 2014
    Messages:
    65
    Likes Received:
    6
    Trophy Points:
    8
    Location:
    Macedonia
    cPanel Access Level:
    Root Administrator
    Hello, i trying to find out how is safe to give ssh to users on shared hosting?
    All i can found is some old forum posts (about 10 years old).

    cPanel hosting server + CSF and without cloudlinux or other software
    Any link text or thought?
     
  2. WebHosting-UK

    WebHosting-UK Member

    Joined:
    Dec 8, 2017
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    If its jailed then you are ok, otherwise no.
     
  3. WebHosting-UK

    WebHosting-UK Member

    Joined:
    Dec 8, 2017
    Messages:
    6
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    They is also more information here regarding jailed shell Jailed SSH?
     
  4. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,734
    Likes Received:
    78
    Trophy Points:
    78
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hi,
    As per me, you should never give a normal shell access to a user on a shared server. However, you can provide a jailed shell access if warranted by any user... Never give a normal shell access..
     
  5. Gojko

    Gojko Well-Known Member

    Joined:
    Nov 24, 2014
    Messages:
    65
    Likes Received:
    6
    Trophy Points:
    8
    Location:
    Macedonia
    cPanel Access Level:
    Root Administrator
    Thank you for reply of course i didn't mention what type of shell i suppose "normal shell" is out of question.
    My question is default jailed shell on cPanel server (shared hosting) security concerns.
     
  6. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    42,802
    Likes Received:
    1,714
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Jailed shell is more secure than normal shell. We document it at:

    VirtFS - Jailed Shell - Version 70 Documentation - cPanel Documentation

    That said, you'd get more security from a feature such as CageFS that offers a virtualized filesystem:

    CloudLinux - Main | New template

    Keep in mind that "secure" is a very broad term. There are several aspects to security, so we can't definitively tell you if allowing or disallowing shell access (or jailed shell access) is going to prevent your system from getting hacked. The following documents are a good place to start when attempting to make your server more secure:

    Recommended Security Settings - cPanel Knowledge Base - cPanel Documentation
    Tips to Make Your Server More Secure - cPanel Knowledge Base - cPanel Documentation

    Thank you.
     
  7. DennisMidjord

    DennisMidjord Well-Known Member

    Joined:
    Sep 27, 2016
    Messages:
    120
    Likes Received:
    7
    Trophy Points:
    18
    Location:
    Denmark
    cPanel Access Level:
    Root Administrator
    Exactly. Given access to jailed shell is secure, but not as secure as not giving access to any kind of shell.
     
Loading...

Share This Page