• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Issue SSH access: how can we block display websites list

E

Erwan

Regular Pleskian
Hello,

We have for example 50 customer suscriptions.
When they use the SSH access, they can only execute their files in /var/www/vhosts/mydomain.com but they can see list of domain with:

#ls -l ../

Example:
mydomain.com
otherdomain.com
otherdomain2.com
...

This poses a commercial problem.

Is it possible not to go to /var/www/vhosts, only to /var/www/vhosts/mydomain.com?
Can we block the display of the list of websites?

Thank you.
 
In the "chrooted SSH" access, it is not possible to list directory contents above the user's login path. If your subscription users are able to see beyond their own web space, you are not using the chrooted environment. This enables users to read and modify other files on the server, too. Change your subscription settings to "chrooted SSH only".
 
Thank you Peter.

Ok but i can only select "/bin/bash (chrooted)"?
I can not select "/bin/sh"?
 
Ok. I use always /bin/sh.
With "/bin/bash (chrooted)", i can not use for example "php", "mysql"... command?

I have always:
bash: php: command not found

We must give SSH acces for Capistrano and PHP Symphony...
 
Maybe these website should consider to use a virtual private server with root access and only a single account on them. You cannot have both, root access and protection against root access.
 
You must log in or register to reply here.

Similar threads

Zéfyx
Issue Git - additional deploy actions : Limited access to binaries [Git extension bug: EXTGIT-22]
Replies
2
Views
2K
Zéfyx
Zéfyx
W
Bot protection blocks a bot I need
Replies
4
Views
1K
wl-mh
W
meymigrou
Issue Unable to backup WordPress site in Plesk "Backup created with minor issues occurred"
Replies
3
Views
1K
Sebahat.hadzhi
Sebahat.hadzhi
Bod
Question Perl on Debian
Replies
4
Views
1K
kpushkarev
K
H
Issue Update your Bitbucket Cloud SSH Host Keys
Replies
14
Views
13K
harry@positiveachieve
H
Back
Top