Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SFTP Security

Discussion in 'Security' started by imagize, Jun 22, 2008.

  1. imagize

    imagize Member

    Joined:
    Oct 8, 2007
    Messages:
    7
    Likes Received:
    0
    Trophy Points:
    51
    Why is that when a user logs in via SFTP that they can traverse out of their home directory and go into important directories like /usr and /var? These are normal user accounts not root and they don't even have shell access.

    How do you disable SFTP or contain users to their own home directories when using SFTP?

    Thanks
     
  2. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,216
    Likes Received:
    10
    Trophy Points:
    313
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    Users can only browse these directories, they cannot perform modifications to any file they do not have access to. The ability to traverse outside of ~ is an artifact of using a *nix file system.
     
  3. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,460
    Likes Received:
    21
    Trophy Points:
    463
    Location:
    Go on, have a guess
    Indeed. It's also a fact of life of shared web hosting. For example, any perl script can also view the same files. It's why correct directory and file permissions settings are critical in a shared environment.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
Loading...

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice