Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SSH direct root logins are disabled

Discussion in 'Security' started by Nirjonadda, Apr 22, 2015.

  1. Nirjonadda

    Nirjonadda Well-Known Member

    Joined:
    May 8, 2013
    Messages:
    615
    Likes Received:
    15
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    Hi,

    I have recently disabled SSH direct root logins on my server as some one suggested to do so because i had many security issues.How ever my new problem is now I'm not able to access SSH server anyway.

    When i try to use Putty, i get this error
    "Server refused public-key signature despite accepting key!"
    So basically now i cannot login to SSH via username/password or by the public/private key.
    Also i cannot login via WinSCP or any other tool. It says "Access denied"

    The only way i can get in to my server is via WHM / Web browser.

    So my question is
    * Is there any way to get in to my server root files without SSH? If yes i can remove the SSH direct login restriction.
    * Why WinSCP or Putty not working from public/private keys?

    Thank you very much
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 Nirjonadda, Apr 22, 2015
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    1,011
    Likes Received:
    89
    Trophy Points:
    78
    cPanel Access Level:
    DataCenter Provider
    If you have any way to (or can ask your host to), change the sshd_config setting for PermitRootLogin from "no" to:

    PermitRootLogin without-password

    This will let key based logins work without allowing password logins for root.
     
    #2 quizknows, Apr 22, 2015
    JonTheWong likes this.
  3. cPanelMichael

    cPanelMichael Technical Support Community Manager
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    45,532
    Likes Received:
    1,966
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Twitter:
    Hello,

    You may want to try running a temporary instance of SSH to see if it allows you to access your server to investigate:

    Code:
    https://IP:2087/cpsess12345678/scripts2/doautofixer?autofix=safesshrestart
    You would replace "IP" with the server's IP address and the session number with what's displayed in your address bar. Note that this is simply a temporary instance of SSH so you can login and determine what's wrong with the standard SSH service. Then, use the following guide to update your SSH configuration:

    SSH Hardening Guide

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Apr 23, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - direct root logins
  1. shrawaaan

    cPanel on AWS Change the root directory?

    shrawaaan, May 13, 2018, in forum: General Discussion
    Replies:
    4
    Views:
    248
    cPanelMichael
    May 15, 2018
  2. Cristian Aray

    [CPANEL-22562] User home directory created as symlink to whostmgr docroot

    Cristian Aray, Feb 24, 2018, in forum: General Discussion
    Replies:
    5
    Views:
    620
    cPanelMichael
    Oct 22, 2018
  3. vinceliu

    SOLVED Changing the root directory for main domain

    vinceliu, Feb 11, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    1,089
    cPanelMichael
    Feb 14, 2018
  4. Wade John Beckett

    Root directory getting full

    Wade John Beckett, Sep 8, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    407
    cPanelMichael
    Sep 11, 2017
  5. Googolicous

    Access multiple user directories from 1 SSH user without root permissions

    Googolicous, Jun 2, 2017, in forum: CloudLinux
    Replies:
    1
    Views:
    914
    cPanelMichael
    Jun 2, 2017

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice