Vesta Control Panel - Forum

Community Forum
https://forum.vestacp.com/

For developer team - sudo admin security

https://forum.vestacp.com/viewtopic.php?f=41&t=16361

Page 1 of 1

For developer team - sudo admin security

Posted: Thu Mar 08, 2018 11:18 pm
by Sysnet
I have see the source code of vesta and I have doubt relation to user admin:admin and all privileges that this user has in ubuntu.

Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL

So in case the Web server process gets hijacked through some vulnerability, they can have privileges like root with user admin, does vesta have another security mechanism to avoid this ?

Re: For developer team - sudo admin security

Posted: Sat Mar 10, 2018 9:19 am
by ScIT
Fail2Ban as brute force detection, also you should not host any websites under admin user. Also the templates have open_basedir restrictions active, so I think we can say vesta is save.
All times are UTC
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/