The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Major issue with SSh

Discussion in 'Security' started by tecwithquestion, Dec 13, 2014.

  1. tecwithquestion

    tecwithquestion Active Member

    Joined:
    Oct 20, 2014
    Messages:
    39
    Likes Received:
    0
    Trophy Points:
    6
    cPanel Access Level:
    Root Administrator
    Hello

    I have cpanel dedicated server with clouldlinux. I have configured Jailshell for one of my friend. That user added in CageFS list.

    He told me that He have access to entire server. not only to his folder only. To confirm I connected as user to shell and I tried to access other folder lile

    /usr/local/cpanel/base/frontend/x3/
    /opt
    /usr
    /etc

    This is users jailshell setting in passwd file

    user:x:539:540::/home/user:/usr/local/cpanel/bin/jailshell

    in my cpanel I have some custom plugin like process usage and inode usage check etc.

    He can easily copy these files into his account and download them via file manager. (I tried that)

    how can we stop this ? User should not have access to any single file outside his home folder.
     
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    942
    Likes Received:
    57
    Trophy Points:
    28
    cPanel Access Level:
    DataCenter Provider
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    30,852
    Likes Received:
    675
    Trophy Points:
    113
    cPanel Access Level:
    Root Administrator
    Yes, as mentioned in the previous post, this is standard due to the nature of how the filesystem works on Linux. Note that while you may be able to view some directories outside of /home, all account-specific data should be restricted.

    Thank you.
     
Loading...

Share This Page