How to protect system files and directories on FTP, SFTP and File Manager access

joomla

• August 12, 2014 17:58

Hello, I allowed SFTP login to my clients on shared web server, whereas they have FTP login and cPanel File Manager access. What I need to do is, to hide system files/directories from cpanel users, or to forbid any changes on system files/directories - when cpanel users login via FTP, SFTP or File Manager. In order to allow them to use files and directories that they own, and to protect server files/directories from being changed by other users than root. cPanel 11.44, Apache 2.4, CentOS 6.5 Any help? Many thanks in advance! :confused:

• 

  ThinIce

  • August 13, 2014 10:39

  Could you tell us a little more about how you've configured your system? Ultimately the directories / files a user can access through SFTP is governed by the standard linux permissions model. The exception of course is if you've enabled [url=http://docs.cpanel.net/twiki/bin/view/AllDocumentation/WHMDocs/VirtFS]VirtFS (Jailed Shell)

  0
• 

  cPanelMichael

  • August 13, 2014 12:35

  Hello :) System files/directories should already be protected when accessing SFTP with an account username. Thank you.

  0
• 

  joomla

  • August 15, 2014 08:33

  Thanks for all replies. Do I need to disable user shell access on shared server according to security reasons?

  0
• 

  cPanelMichael

  • August 15, 2014 16:15

  [quote="joomla, post: 1709142">Thanks for all replies. Do I need to disable user shell access on shared server according to security reasons?
  You could enabled jailed shell if you are not comfortable granting full shell access. It's documented here: Jailed Shell Thank you.

  0

Please sign in to leave a comment.