Is it safe to give ssh to users?

[Gojko]

Hello, i trying to find out how is safe to give ssh to users on shared hosting?
All i can found is some old forum posts (about 10 years old).

cPanel hosting server + CSF and without cloudlinux or other software
Any link text or thought?

 

[WebHosting-UK]

If its jailed then you are ok, otherwise no.

 

[WebHosting-UK]

They is also more information here regarding jailed shell Jailed SSH?

 

[24x7server]

Hi,

how is safe to give ssh to users on shared hosting?

As per me, you should never give a normal shell access to a user on a shared server. However, you can provide a jailed shell access if warranted by any user... Never give a normal shell access..

 

[Gojko]

Thank you for reply of course i didn't mention what type of shell i suppose "normal shell" is out of question.
My question is default jailed shell on cPanel server (shared hosting) security concerns.

 

[cPanelMichael]

Hello,

Jailed shell is more secure than normal shell. We document it at:

VirtFS - Jailed Shell - Version 70 Documentation - cPanel Documentation

That said, you'd get more security from a feature such as CageFS that offers a virtualized filesystem:

CloudLinux - Main | New template

Keep in mind that "secure" is a very broad term. There are several aspects to security, so we can't definitively tell you if allowing or disallowing shell access (or jailed shell access) is going to prevent your system from getting hacked. The following documents are a good place to start when attempting to make your server more secure:

Recommended Security Settings - cPanel Knowledge Base - cPanel Documentation
Tips to Make Your Server More Secure - cPanel Knowledge Base - cPanel Documentation

Thank you.

 

[DennisMidjord]

Keep in mind that "secure" is a very broad term

Exactly. Given access to jailed shell is secure, but not as secure as not giving access to any kind of shell.