The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Restricting Users to Home Directories

Discussion in 'General Discussion' started by jlimited, Jun 25, 2004.

  1. jlimited

    jlimited Well-Known Member

    Joined:
    Jun 4, 2004
    Messages:
    69
    Likes Received:
    0
    Trophy Points:
    156
    I am attempting to restricting users to Home Directories, but I the usually place where I would do that is not there.

    Where does Cpanel create all of the virtual hosts at?

    Should it be under:

    httpd.conf
    proftpd.conf

    Thanks
    Travis
     
    #1 jlimited, Jun 25, 2004
  2. coastinc

    coastinc Well-Known Member

    Joined:
    Mar 13, 2002
    Messages:
    158
    Likes Received:
    0
    Trophy Points:
    316
    User's are restricted to their home directory....
    If you are referring to SSH access, you can use Jailshell.
     
    #2 coastinc, Jun 26, 2004
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,472
    Likes Received:
    20
    Trophy Points:
    463
    Location:
    Go on, have a guess
    One handy script is:

    /scripts/enablefileprotect

    Which offers some, if marginal, restriction. Of course non of this (including jailshell) has any effect on CGI perl and php scripts which can still view anything that is appropriately readable anywhere on the server.
     
    #3 chirpy, Jun 26, 2004
  4. dazerrackers

    dazerrackers Well-Known Member

    Joined:
    Jan 23, 2004
    Messages:
    63
    Likes Received:
    0
    Trophy Points:
    156
    Location:
    England
    Is this restricting them in php? like to only there dir know one else's on the server.
     
    #4 dazerrackers, Jun 26, 2004
  5. Sheldon

    Sheldon Well-Known Member

    Joined:
    Jun 7, 2004
    Messages:
    378
    Likes Received:
    0
    Trophy Points:
    166
    Location:
    Canada
    WHM > Server Configuration > Tweak Security > mod_php_openbasedir tweak

    or whatever that is..

    enable that.. DONE

    Sheldon
     
    #5 Sheldon, Jun 26, 2004
  6. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,472
    Likes Received:
    20
    Trophy Points:
    463
    Location:
    Go on, have a guess
    True. But you, presumably, won't be getting rid of perl CGI. What these restrictions are for is to stop vulnerable scripts (php) from allowing hackers access to things you don't want them to have. None of these will stop a user with an account from accessing everything that the file/dir permissions allow. Don't get a false sense of security.
     
    #6 chirpy, Jun 27, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - Restricting Users Home
  1. Mangoose

    Restricting SSH access to 2 or 3 specific IPs

    Mangoose, Feb 17, 2017, in forum: Security
    Replies:
    3
    Views:
    317
    cPanelMichael
    Feb 20, 2017
  2. GoWilkes

    Restricting MySQL access by port

    GoWilkes, Jan 21, 2016, in forum: Database Discussions
    Replies:
    2
    Views:
    970
    cPanelMichael
    Jan 22, 2016
  3. Thomson-Thomson

    phpMyAdmin for all users

    Thomson-Thomson, Jul 24, 2017 at 2:23 AM, in forum: Database Discussions
    Replies:
    3
    Views:
    45
    cPanelMichael
    Jul 25, 2017 at 7:00 AM
  4. kszadkowski

    Global blocking of wpscan enumerate users

    kszadkowski, Jul 19, 2017, in forum: Security
    Replies:
    3
    Views:
    66
    cPanelMichael
    Jul 20, 2017 at 11:18 AM
  5. Plamen Kalchev

    UAPI userdata mismatching "ssl" field between users

    Plamen Kalchev, Jul 16, 2017, in forum: cPanel Developers
    Replies:
    1
    Views:
    49
    cPanelMichael
    Jul 17, 2017

Share This Page