The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Serious Login Problem

Discussion in 'General Discussion' started by JRuthe, Apr 19, 2008.

  1. JRuthe

    JRuthe Registered

    Joined:
    Jul 11, 2006
    Messages:
    4
    Likes Received:
    0
    Trophy Points:
    1
    Hello,

    I've had two people who, today, tried to login into cPanel, but upon logging in they discovered they were logged in as a completely different user. They had access to their databases, files, everything.

    My main concern is how can I fix this from happening? I am willing to provide more information, I just feel that this is a pretty serious flaw.

    cPanel is currently using the session authentication method.

    Thanks for your time,
    Jordan
     
    #1 JRuthe, Apr 19, 2008
    Last edited: Apr 19, 2008
  2. jpetersen

    jpetersen Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    113
    Likes Received:
    4
    Trophy Points:
    18
  3. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,461
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    Place a check in the checkbox for this Tweak Setting:

    Disable login with root or reseller password into the users' cPanel interface. Also disable switch account dropdown in themes with switch account feature.



    After saving, that behavior should go away.
     
Loading...

Share This Page