Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SSH access, allow or deny?

Discussion in 'Security' started by DjordjeB, Feb 26, 2017.

Tags:
  1. DjordjeB

    DjordjeB Well-Known Member

    Joined:
    Nov 24, 2014
    Messages:
    49
    Likes Received:
    6
    Trophy Points:
    8
    Location:
    Macedonia
    cPanel Access Level:
    Root Administrator
    Hello, i read a lot and i still don't know is it smart to allow access users to SSH or not?

    cPanel server without CloudLinux. WHM > security adviser all green. Enabled options like jailshell and this:

    Code:
    disable_functions = “apache_child_terminate, apache_setenv, define_syslog_variables, escapeshellarg, escapeshellcmd, eval, exec, fp, fput, ftp_connect, ftp_exec, ftp_get, ftp_login, ftp_nb_fput, ftp_put, ftp_raw, ftp_rawlist, highlight_file, ini_alter, ini_get_all, ini_restore, inject_code, mysql_pconnect, openlog, passthru, php_uname, phpAds_remoteInfo, phpAds_XmlRpc, phpAds_xmlrpcDecode, phpAds_xmlrpcEncode, popen, posix_getpwuid, posix_kill, posix_mkfifo, posix_setpgid, posix_setsid, posix_setuid, posix_setuid, posix_uname, proc_close, proc_get_status, proc_nice, proc_open, proc_terminate, shell_exec, syslog, system, xmlrpc_entity_decode”
    A lot of them want to install some framework for JAVA but i'm not sure that i should allow SSH access?

    Any help, advise?
     
  2. webmasteryoda

    webmasteryoda Well-Known Member

    Joined:
    Apr 3, 2013
    Messages:
    88
    Likes Received:
    5
    Trophy Points:
    8
    Location:
    Serbia
    cPanel Access Level:
    Root Administrator
    Đorđe, did you applied cPanel hardened kernel?
    And is it working fine?
     
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,425
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You can assign jailed shell access to individual accounts. Unlike a normal shell environment, a jailed shell environment increases security for a server's other users. More information about how jailed shell works is available at:

    VirtFS - Jailed Shell - Documentation - cPanel Documentation

    Thank you.
     
Loading...

Share This Page