is correct users with jailshell can open /etc/passwd ??

000 · Sep 12, 2021

in my server CentOs 7 we have some users with

jailshell

when they run the command

Code:

cat /etc/passwd

they can see ALL users and the complet file.

that is normal in LINUX ?

how I can avoid that?

GOT · Sep 12, 2021

Yes this is normal, and password hashes are not kept in this file.

If you want to be able to block that out, the I would suggest CloudLinux with CageFS.

000 · Sep 12, 2021

GOT said:
Yes this is normal

oh...

because we are VERY newbie for us are a sorpraise know that.

... in what cases some user (with jailshell) require open this file?

(this sound as a BUG in Linux; for what a user with jailshell require open this ¿? ...)

cPJustinD · Sep 13, 2021

Hello! This is an expected functionality as the cPanel user's interface requires access to /etc to pull necessary account information for the UI. The users shouldn't be able to see other users added by the system, however.

Additionally, as GOT mentioned, you can also convert to CloudLinux with CageFS to mitigate the issue if you'd like to avoid it altogether.

I hope that this helps. If you have any other questions or concerns, please let us know!

Thread starter	Similar threads	Forum	Replies	Date
	SOLVED Correct GID for nobody in /etc/sysctl.conf CL8	Security	3	May 7, 2023
K	Correct way to install multiple SSL certs on one account	Security	3	Aug 28, 2022
A	AutoSSL problem all configs is correct	Security	6	Aug 25, 2022
I	AutoSSL Error (Verify registration and authoritative nameserver configuration for this domain or to correct this problem.)	Security	6	Jan 17, 2021
P	Application links go to incorrect account	Security	2	Dec 3, 2020

Search

Search

is correct users with jailshell can open /etc/passwd ??

000

Well-Known Member

GOT

Get Proactive!

000

Well-Known Member

cPJustinD

Administrator