Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > Installation/Configuration

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 28th June 2007, 17:47
Mr Blek Mr Blek is offline
Junior Member
 
Join Date: Jun 2006
Posts: 26
Thanks: 2
Thanked 0 Times in 0 Posts
Default Protecting user directories and admispconfig question

What access permissions should be applied to /home/admispconfig

Any user that can access SSH can browse to that directory and read files.

Also, SSH users can browse to the /srv/www/web* directory of any other host and read their files. How can I have this protected by default when the account is created?

Thanks
Reply With Quote
Sponsored Links
  #2  
Old 28th June 2007, 17:53
till till is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 35,792
Thanks: 821
Thanked 5,337 Times in 4,187 Posts
Default

There is nothing that a SSH user might see in /home/admispconfig/ that he can not see when he downloads the ISPConfig installer tar.gz, all login information and passwords are protected. You must enable SSH chrooting. Please search the forum for "chroot ssh" for detailed instructions.
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 28th June 2007, 18:53
Mr Blek Mr Blek is offline
Junior Member
 
Join Date: Jun 2006
Posts: 26
Thanks: 2
Thanked 0 Times in 0 Posts
Default

Thanks. Didn't realise I'd double posted.
Reply With Quote
  #4  
Old 28th June 2007, 20:26
Mr Blek Mr Blek is offline
Junior Member
 
Join Date: Jun 2006
Posts: 26
Thanks: 2
Thanked 0 Times in 0 Posts
Default

Installed ssh with chroot, followed instructions per debian how to

ISPConfig with chroot off:

web4_admin:x:10004:10004:admin:/srv/www/web4:/bin/bash

ISPConfig with chroot on:

web4_admin:x:10004:10004:admin:/srv/www/web4/./:/bin/bash

When its turned on, the shell exits immediately. What's gone wrong?
Reply With Quote
  #5  
Old 29th June 2007, 18:18
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,740 Times in 2,575 Posts
Default

Any errors in your logs?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #6  
Old 29th June 2007, 19:35
Mr Blek Mr Blek is offline
Junior Member
 
Join Date: Jun 2006
Posts: 26
Thanks: 2
Thanked 0 Times in 0 Posts
Default

None in /var/log/messages
Reply With Quote
  #7  
Old 30th June 2007, 16:29
falko falko is offline
Super Moderator
 
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 41,701
Thanks: 1,900
Thanked 2,740 Times in 2,575 Posts
Default

And in the other logs, e.g. /var/log/auth.log?
__________________
Falko
--
Download the ISPConfig 3 Manual! | Check out the ISPConfig 3 Billing Module!

FB: http://www.facebook.com/howtoforge

nginx-Webhosting: Timme Hosting | Follow me on:
Reply With Quote
  #8  
Old 30th June 2007, 18:31
Mr Blek Mr Blek is offline
Junior Member
 
Join Date: Jun 2006
Posts: 26
Thanks: 2
Thanked 0 Times in 0 Posts
 
Default

I don't actually have that log file. the ones I can see are:

__________________________________________________ _________
YaST2 evms-engine.log mcelog zmd-backend.log
acpid faillog messages zmd-backend.log-20070627.bz2
apache2 httpd mysqld.log zmd-backend.log-20070629.bz2
apparmor ispconfig_install.log news zmd-backend.log-20070630.bz2
audit krb5 ntp zmd-messages.log
boot.log lastlog scpm zmd-messages.log.2007-06-26
boot.msg mail smpppd zmd-messages.log.2007-06-27
boot.omsg mail.err warn zmd-messages.log.2007-06-28
cups mail.info wtmp zmd-messages.log.2007-06-29
evms-engine.1.log mail.warn xferlog
__________________________________________________ ___________

/var/log/messages was the only place I could find any ssh logging
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How do I enable automatic backup? drsintoma Installation/Configuration 36 12th September 2006 16:17


All times are GMT +2. The time now is 20:41.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2014, vBulletin Solutions, Inc.