[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] SSH security issues / perms problem.

Subject: Re: [cobalt-users] SSH security issues / perms problem.
From: "Danny Daniels" <dcd@xxxxxxxxxxxxxxxxxx>
Date: Sun Jun 24 11:44:01 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

> > I have problems with SSH.
> >
> >
> > I run web hosting, and I give users access to SSH, the problem is they
> > are able to READ all files on the server including phpmyadmin on our
> > main domain which has the mysql user/pass.
> >
> >
> > That is a pretty large security issue, but everyone seems to think its
> > unfixable (if so I geuss telnet is no longer a option for customers)
> >

Correct me if I am wrong, but you have a permissions problem. If user1 can
read and access user2 files you simply need to change the file permissions
on user1 files. Also look at the umask assigned to each user for default
file creation.

File permissions are independent of access type (ssh / telnet / console)
SSH simply provides access to the shell, It does not control your permission
levels.

I think its also possible to "Jail" a user to his/her directory tree
preveting them from going higher in the filesystem.

Did I mis-understand the question / problem ?

-Danny Daniels
 dcd@xxxxxxxxxxxxxxxxxx

References:
- [cobalt-users] SSH security issues.
  - From: chris
- Re: [cobalt-users] SSH security issues.
  - From: SteelHead

Prev by Date: Re: [cobalt-users] SSH security issues.
Next by Date: [cobalt-users] [Raq3] Fix to Kernel Update 4.0.1 if it put your box into a continual reboot
Previous by thread: Re: [cobalt-users] SSH security issues.
Next by thread: Re: [cobalt-users] SSH security issues.

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index