Go Back   HowtoForge Forums | HowtoForge - Linux Howtos and Tutorials > ISPConfig 2 > Installation/Configuration
Reload this Page Security Warning SSH not CHROOTED!
Register FAQ Members List Social Groups Calendar Search Today's Posts Mark Forums Read

Do you like HowtoForge? Please consider supporting us by becoming a subscriber.
Reply
 
Thread Tools Display Modes
  #1  
Old 18th March 2010, 21:21
vaio1 vaio1 is offline
Senior Member
  
Join Date: Jul 2007
Location: Italy
Posts: 654
Thanks: 77
Thanked 12 Times in 7 Posts
Default Security Warning SSH not CHROOTED!
Hi guys only now I have discovered that all the users who connect themselves by a SSH client to the server can see all the system folders!

How is it possible?

Is there a way to set a Jail to it? The server is in production mode!

thanks
Reply With Quote
Sponsored Links
  #2  
Old 19th March 2010, 09:58
till till is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 31,872
Thanks: 689
Thanked 4,182 Times in 3,201 Posts
Default
By default, SSH accounts are never chrooted. Personally I wont give users SSH access if it is not absolutely nescessary.

Have you patched your SSH daemon to support chrooting for ispconfig 2?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #3  
Old 19th March 2010, 10:00
vaio1 vaio1 is offline
Senior Member
  
Join Date: Jul 2007
Location: Italy
Posts: 654
Thanks: 77
Thanked 12 Times in 7 Posts
Default
Hi again Till, I have followed the setup tutorial in this website and I have not found any ssh patch section. Please, can u tell me what have I do?

thanks again
Reply With Quote
  #4  
Old 19th March 2010, 10:01
till till is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 31,872
Thanks: 689
Thanked 4,182 Times in 3,201 Posts
Default
Which Linux distribution?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #5  
Old 19th March 2010, 10:03
vaio1 vaio1 is offline
Senior Member
  
Join Date: Jul 2007
Location: Italy
Posts: 654
Thanks: 77
Thanked 12 Times in 7 Posts
Default
We have the Centos 5 installed.
Reply With Quote
  #6  
Old 19th March 2010, 10:05
till till is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 31,872
Thanks: 689
Thanked 4,182 Times in 3,201 Posts
Default
http://www.howtoforge.com/forums/showthread.php?t=42128
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #7  
Old 19th March 2010, 10:06
vaio1 vaio1 is offline
Senior Member
  
Join Date: Jul 2007
Location: Italy
Posts: 654
Thanks: 77
Thanked 12 Times in 7 Posts
Default
Already tested but without success.
Reply With Quote
  #8  
Old 19th March 2010, 10:07
till till is offline
Super Moderator
  
Join Date: Apr 2005
Location: Lüneburg, Germany
Posts: 31,872
Thanks: 689
Thanked 4,182 Times in 3,201 Posts
Default
And you created a new SSH user for testing?
__________________
Till Brehm
--
Get ISPConfig support and the ISPConfig 3 manual from ispconfig.org.
Reply With Quote
  #9  
Old 19th March 2010, 10:27
vaio1 vaio1 is offline
Senior Member
  
Join Date: Jul 2007
Location: Italy
Posts: 654
Thanks: 77
Thanked 12 Times in 7 Posts
 
Default
I have enabled a user by the ISPConfig panel. is it sufficient?
Reply With Quote
Reply

Bookmarks

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Email problem 'Cannot set my user or group id.' (using ISPConfig 3 + OpenSuSE 11.2) urosm Installation/Configuration 5 19th June 2010 22:41
Need help setting up domainpop with postfix kameelperdza Installation/Configuration 6 15th June 2009 07:49
cyrus-sasl won't install on my ubuntu9.04 kameelperdza Installation/Configuration 1 13th June 2009 10:28
Unable to install ISPConfig bdonecker Installation/Configuration 21 26th May 2009 08:20
[Postfix] Quota doesn't work krzysiek HOWTO-Related Questions 8 2nd March 2009 15:57


All times are GMT +2. The time now is 07:46.

Contact Us - HowtoForge - Linux Howtos and Tutorials - Archive - Top

Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2013, vBulletin Solutions, Inc.