The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SFTP Security

Discussion in 'Security' started by imagize, Jun 22, 2008.

  1. imagize

    imagize Member

    Joined:
    Oct 8, 2007
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    1
    Why is that when a user logs in via SFTP that they can traverse out of their home directory and go into important directories like /usr and /var? These are normal user accounts not root and they don't even have shell access.

    How do you disable SFTP or contain users to their own home directories when using SFTP?

    Thanks
     
  2. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Users can only browse these directories, they cannot perform modifications to any file they do not have access to. The ability to traverse outside of ~ is an artifact of using a *nix file system.
     
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Indeed. It's also a fact of life of shared web hosting. For example, any perl script can also view the same files. It's why correct directory and file permissions settings are critical in a shared environment.
     
Loading...

Share This Page