web site Shell user privacy

Discussion in 'Installation/Configuration' started by spazio, Dec 7, 2015.

  1. spazio

    spazio Member

    Hi,
    I have a web site with 2 shell user created within a jail in ispconfig 3. They are able to login to rsync their laptop user as a backup.
    Today I was making some test with testuser1 and I was able to browse the testuser2 home folder. This is not wanted.
    Here are the location of the home folder.
    /var/www/clients/client2/web2/./home/testuser1
    /var/www/clients/client2/web2/./home/testuser2
    The problem occur since the 2 user have the same userid and groupid in /etc/password when ispconfig3 created them.
    Is there a way in ispconfig 3 with shell user to have some kind of privacy. To block each user within their home directory so they can't have access to other user files?

    Thanks
    Spazio
     
  2. sjau

    sjau Local Meanie Moderator

    I think the problem is that they belong to the came client.

    If you had different clients (and maybe even different webs) then it should be fine.
     
  3. till

    till Super Moderator Staff Member ISPConfig Developer

    Shell users in ISPConfig are grouped by website (all shell users of a site share the same uid). If you want to have completely separated shell logins, then create a new website for the user e.g. as subdomain username.domain.tld.
     

Share This Page