JailShell logs

T

tecwithquestion

Well-Known Member
Oct 20, 2014
65
2
58
cPanel Access Level
Root Administrator
Hello

I have noticed that user who have jail shell access , he can access 80% of server data.

and this is very risky.

Is there any way to prevent this ? or is there any way to copy all users commands execuated via jailshell to safe location so that he can not clear those ?

in bash history it gets saved but user can remove / clear those entries
 
MilesWeb

MilesWeb

Well-Known Member
PartnerNOC
May 23, 2012
173
2
68
India
cPanel Access Level
Root Administrator
Twitter
tecwithquestion said:
Hello

I have noticed that user who have jail shell access , he can access 80% of server data.

and this is very risky.

Is there any way to prevent this ? or is there any way to copy all users commands execuated via jailshell to safe location so that he can not clear those ?

in bash history it gets saved but user can remove / clear those entries
Click to expand...
Which files can be read with the jail shell access ? Could you confirm which files can be modified which are outside his account ?
 
MilesWeb

MilesWeb

Well-Known Member
PartnerNOC
May 23, 2012
173
2
68
India
cPanel Access Level
Root Administrator
Twitter
tecwithquestion said:
many folders of servers
Click to expand...
Yes, you should be able to view them. However, if these folders have actual data, you won't have access to it. Kindly provide with any such folder under which you can view the files and read them.
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,268
463
Hello :)

This is standard due to the nature of how the filesystem works on Linux. Note that while you may be able to view some directories outside of /home, all account-specific data should be restricted. Additional documentation is available at:

VirtFS (Jailed Shell)

Thank you.
 
T

tecwithquestion

Well-Known Member
Oct 20, 2014
65
2
58
cPanel Access Level
Root Administrator
Okay. I will look for it. how can I get the jailshell lock for user for which jailshell is enabled.

can I make copy of his history file somewhere on server ?

home/user/.bash.history is not good file. He can clean that file (if he is having good exp on linux)
 
cPanelMichael

cPanelMichael

Administrator
Staff member
Apr 11, 2011
47,880
2,268
463
You can copy the .bash_history file through a cron job as mentioned in the thread from my previous post.

Thank you.
 
You must log in or register to reply here.
Thread starter Similar threads Forum Replies Date
M Resource Usage Logs Site Performance Analytics 4
G Last Update time in Download Current Raw Access Logs Not Changing Site Performance Analytics 3
S /etc/apache2/logs/domlogs/%user% creation Site Performance Analytics 5
B logs and perl for user under jailshell Site Performance Analytics 1
S jailshell logs Site Performance Analytics 2
Similar threads
Resource Usage Logs
Last Update time in Download Current Raw Access Logs Not Changing
/etc/apache2/logs/domlogs/%user% creation
logs and perl for user under jailshell
jailshell logs
Top Bottom