Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is it safe to give ssh to users?

Discussion in 'Security' started by DjordjeB, Jan 27, 2018.

Tags:
  1. Gojko

    Gojko Well-Known Member

    Joined:
    Nov 24, 2014
    Messages:
    82
    Likes Received:
    7
    Trophy Points:
    8
    Location:
    Macedonia
    cPanel Access Level:
    Root Administrator
    Hello, i trying to find out how is safe to give ssh to users on shared hosting?
    All i can found is some old forum posts (about 10 years old).

    cPanel hosting server + CSF and without cloudlinux or other software
    Any link text or thought?
     
  2. WebHosting-UK

    WebHosting-UK Member

    Joined:
    Dec 8, 2017
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Twitter:
    If its jailed then you are ok, otherwise no.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  3. WebHosting-UK

    WebHosting-UK Member

    Joined:
    Dec 8, 2017
    Messages:
    8
    Likes Received:
    0
    Trophy Points:
    1
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Twitter:
    They is also more information here regarding jailed shell Jailed SSH?
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  4. 24x7server

    24x7server Well-Known Member

    Joined:
    Apr 17, 2013
    Messages:
    1,888
    Likes Received:
    90
    Trophy Points:
    78
    Location:
    India
    cPanel Access Level:
    Root Administrator
    Hi,
    As per me, you should never give a normal shell access to a user on a shared server. However, you can provide a jailed shell access if warranted by any user... Never give a normal shell access..
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  5. Gojko

    Gojko Well-Known Member

    Joined:
    Nov 24, 2014
    Messages:
    82
    Likes Received:
    7
    Trophy Points:
    8
    Location:
    Macedonia
    cPanel Access Level:
    Root Administrator
    Thank you for reply of course i didn't mention what type of shell i suppose "normal shell" is out of question.
    My question is default jailed shell on cPanel server (shared hosting) security concerns.
     
  6. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,167
    Likes Received:
    1,934
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    Jailed shell is more secure than normal shell. We document it at:

    VirtFS - Jailed Shell - Version 70 Documentation - cPanel Documentation

    That said, you'd get more security from a feature such as CageFS that offers a virtualized filesystem:

    CloudLinux - Main | New template

    Keep in mind that "secure" is a very broad term. There are several aspects to security, so we can't definitively tell you if allowing or disallowing shell access (or jailed shell access) is going to prevent your system from getting hacked. The following documents are a good place to start when attempting to make your server more secure:

    Recommended Security Settings - cPanel Knowledge Base - cPanel Documentation
    Tips to Make Your Server More Secure - cPanel Knowledge Base - cPanel Documentation

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
  7. DennisMidjord

    DennisMidjord Well-Known Member

    Joined:
    Sep 27, 2016
    Messages:
    180
    Likes Received:
    14
    Trophy Points:
    18
    Location:
    Denmark
    cPanel Access Level:
    Root Administrator
    Exactly. Given access to jailed shell is secure, but not as secure as not giving access to any kind of shell.
     
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice