Vesta Control Panel - Forum

Community Forum

Skip to content

Advanced search
  • Quick links
    • Main site
    • Github repo
    • Google Search
  • FAQ
  • Login
  • Register
  • Board index Main Section Web Server
  • Search

Users can get full directory path

Questions regarding the Web Server
Apache + Nginx, Nginx + PHP5-FPM
Post Reply
  • Print view
Advanced search
3 posts • Page 1 of 1
chirag
Posts: 8
Joined: Wed Aug 10, 2016 9:26 am

Users can get full directory path
  • Quote

Post by chirag » Sun Aug 14, 2016 9:31 am

Hi,
I have a concern with security.
Suppose I have two users A and B
A get the full path the file starting from root. ex: /home/a/web/domain.com/public_html

My concern is that would they also be able to check directory of user B?
Is is possible to restrict them to their directory that is after domain.tld part?
Top

chirag
Posts: 8
Joined: Wed Aug 10, 2016 9:26 am

Re: Users can get full directory path
  • Quote

Post by chirag » Sun Aug 14, 2016 12:09 pm

I will surely look into commercial plugin.
However, my current question is that is it possible to jail Directory?
Like if a php request directory then /home/public_html would be shown to them instead of that full path
Top

skurudo
VestaCP Team
Posts: 8099
Joined: Fri Dec 26, 2014 2:23 pm
Contact:
Contact skurudo
Website Facebook Google+ Skype
Twitter

Re: Users can get full directory path
  • Quote

Post by skurudo » Wed Oct 26, 2016 7:55 am

You can try SFTP plugin and new templates.

SFTP plugin doesn't visualise anything and some users say: why I need this stuff? Let me explain a little how it suppose to work:
- without SFTP Choot Plugin user that have nologin shell can't use SFTP
- without SFTP Chroot Plugin user that have rssh shell user can use SFTP but he also can navigate file system beyond home his directory
- with SFTP Choot Plugin user that have nologin shell can use SFTP and can't navigate root file system he will be locked to his home
- with or without SFTP Chroot users that have bash as system shell can navigate root file system beyond home directory

The main purpose is to keep the user in the home directory.
Top


Post Reply
  • Print view

3 posts • Page 1 of 1

Return to “Web Server”



  • Board index
  • All times are UTC
  • Delete all board cookies
  • The team
Powered by phpBB® Forum Software © phpBB Limited
*Original Author: Brad Veryard
*Updated to 3.2 by MannixMD
 

 

Login  •  Register

I forgot my password