1. Please take a little time for this simple survey! Thank you for participating!
    Dismiss Notice
  2. Dear Pleskians, please read this carefully! New attachments and other rules Thank you!
    Dismiss Notice
  3. Dear Pleskians, I really hope that you will share your opinion in this Special topic for chatter about Plesk in the Clouds. Thank you!
    Dismiss Notice

Plesk 10.4.4 can't limit reseller permissions

Discussion in 'Plesk 10.x for Linux Issues, Fixes, How-To' started by cmaxwell, Mar 25, 2012.

  1. cmaxwell

    cmaxwell Regular Pleskian

    25
    73%
    Joined:
    Aug 1, 2001
    Messages:
    150
    Likes Received:
    1
    Hi all,

    When we create a Reseller Plan and set permissions such as "Management of access to the server over SSH" to "Not allowed", when the reseller logs in they can create service plans with any permissions they choose. In other words, the permissions that we set for the reseller have no effect when they create their own plans.

    For example, a reseller can create a service plan and allow SSH access for their customers even when the "Management of access to the server over SSH" option was disallowed for the reseller. This is a significant security risk as they can allow even non-chrooted SSH access to the server.

    I have tested and confirmed this on a couple of Plesk 10.4.4 servers and both produce the same results.

    Does anyone have any suggestions, or am I missing something obvious?

    Thanks,
    Chris
     
  2. cmaxwell

    cmaxwell Regular Pleskian

    25
    73%
    Joined:
    Aug 1, 2001
    Messages:
    150
    Likes Received:
    1
    Just found the section in the documentation that explains this:

    While this makes sense, I still find it rather counter-intuitive as it could give a reseller the impression that they can indeed use these resources when they actually can't.
     
Loading...