Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

SSH direct root logins are disabled

Discussion in 'Security' started by Nirjonadda, Apr 22, 2015.

  1. Nirjonadda

    Nirjonadda Well-Known Member

    Joined:
    May 8, 2013
    Messages:
    597
    Likes Received:
    15
    Trophy Points:
    68
    cPanel Access Level:
    Root Administrator
    Hi,

    I have recently disabled SSH direct root logins on my server as some one suggested to do so because i had many security issues.How ever my new problem is now I'm not able to access SSH server anyway.

    When i try to use Putty, i get this error
    "Server refused public-key signature despite accepting key!"
    So basically now i cannot login to SSH via username/password or by the public/private key.
    Also i cannot login via WinSCP or any other tool. It says "Access denied"

    The only way i can get in to my server is via WHM / Web browser.

    So my question is
    * Is there any way to get in to my server root files without SSH? If yes i can remove the SSH direct login restriction.
    * Why WinSCP or Putty not working from public/private keys?

    Thank you very much
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #1 Nirjonadda, Apr 22, 2015
  2. quizknows

    quizknows Well-Known Member

    Joined:
    Oct 20, 2009
    Messages:
    1,010
    Likes Received:
    87
    Trophy Points:
    78
    cPanel Access Level:
    DataCenter Provider
    If you have any way to (or can ask your host to), change the sshd_config setting for PermitRootLogin from "no" to:

    PermitRootLogin without-password

    This will let key based logins work without allowing password logins for root.
     
    #2 quizknows, Apr 22, 2015
    JonTheWong likes this.
  3. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    44,396
    Likes Received:
    1,857
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    You may want to try running a temporary instance of SSH to see if it allows you to access your server to investigate:

    Code:
    https://IP:2087/cpsess12345678/scripts2/doautofixer?autofix=safesshrestart
    You would replace "IP" with the server's IP address and the session number with what's displayed in your address bar. Note that this is simply a temporary instance of SSH so you can login and determine what's wrong with the standard SSH service. Then, use the following guide to update your SSH configuration:

    SSH Hardening Guide

    Thank you.
     
    Stop hovering to collapse... Click to collapse... Hover to expand... Click to expand...
    #3 cPanelMichael, Apr 23, 2015
(You must log in or sign up to post here.)
Loading...
Similar Threads - direct root logins
  1. shrawaaan

    cPanel on AWS Change the root directory?

    shrawaaan, May 13, 2018, in forum: General Discussion
    Replies:
    4
    Views:
    162
    cPanelMichael
    May 15, 2018
  2. vinceliu

    SOLVED Changing the root directory for main domain

    vinceliu, Feb 11, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    427
    cPanelMichael
    Feb 14, 2018
  3. Wade John Beckett

    Root directory getting full

    Wade John Beckett, Sep 8, 2017, in forum: General Discussion
    Replies:
    1
    Views:
    319
    cPanelMichael
    Sep 11, 2017
  4. Googolicous

    Access multiple user directories from 1 SSH user without root permissions

    Googolicous, Jun 2, 2017, in forum: CloudLinux
    Replies:
    1
    Views:
    774
    cPanelMichael
    Jun 2, 2017
  5. lordfkiller

    Change root directory for the main domain?

    lordfkiller, Feb 8, 2017, in forum: General Discussion
    Replies:
    2
    Views:
    8,190
    cPanelMichael
    Feb 9, 2017

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice