Users can go above their accounts in FTP with cagefs active

3awh

• May 18, 2019 08:12

I had to redo the server and install everything over. I installed all accounts and when a user is ftp in they can go above their account name into directories above it / ... bin dev etc home lib lib64 opt proc sbin tmp usr var -----/home --------------useraccountname ------------------------------------------- .cagefs ------------------------------------------- .cl.selector -------------------------------------------.cphorde ------------------------------------------- .htpasswds ------------------------------------------- access-logs ------------------------------------------- etc ------------------------------------------- logs ------------------------------------------- mail ------------------------------------------- public_ftp ------------------------------------------- public_html ------------------------------------------- ssl ------------------------------------------- tmp ------------------------------------------- www How do I stop them from getting above second Home so all they can see is is /home/useraccountname thanks Mitch

• 

  dalem

  • May 18, 2019 22:24

  I do not See this behavior? only on SFTP & they jailed to the cage and only see files that they use or permission denied

  0
• 

  cPanelMichael

  • May 20, 2019 19:03

  Hello @3awh, CloudLinux documents information about CageFS mount points on the link below: CageFS | Documentation Can you review this document and confirm that you notice behavior that's contrary to what's documented? Thank you.

  0

Please sign in to leave a comment.