Skip to main content

Accounts in VirtualFS have full server /usr/ access?

Comments

4 comments

  • dalem
    Question 1: Is this a security risk or is this somehow intentional? Why is it one or two accounts (only) that have this access?

    This is intentional & jails the users access so its a security enhancement.
    Question 2: Yesterday there were two accounts that displayed this. Today I am looking and see only one account that has this full breached-jail access in their /home/virtfs/ directory.

    The permissions have not changed, Likely that user has a cron running even if the user has no Jail shell enabled the users crontab will run in the jail. Best to just leave it alone as it appears to be working as it should.
    0
  • martin MHC
    Feedback from WHM / CPanel support (on another matter) came back with some useful guidance. The Virtual File System access as described is put in place if there is any SSH or SFTP access to the account. This would typically be via the local IDE . And yes - as dalem states; cronjob's also will cause these /virtfs/accountname/ access details to be automatically set up by the server. I was initially surprised to find these access routes and with some digging am comfortable they're normal and proper as of WHM 78.
    0
  • dalem
    I was initially surprised to find these access routes and with some digging am comfortable they're normal and proper as of WHM 78.

    they have been normal and proper since cpanel implemented jail shell years back :)
    0
  • cPanelLauren
    Glad to see you were able to get this resolved @martin MHC let us know if you have any further questions or concerns. Thanks!
    0

Please sign in to leave a comment.