sal83 Posted January 6 Share Posted January 6 Hi - I have enabled Apaxche/NGINX/Varnish/PHP-FPM with Redis, Mongo, PGSQL, NodeJs and Memcached on the server. I want to provide SSH access to the clients for them to run CLI commands. What security controls should i establish on the server to harden before providing SSH access? I understand REDIS etc. might require specific hardening before providing SSH access to end clients. Kindly advise. Link to comment Share on other sites More sharing options...
Sandeep B. Posted January 7 Share Posted January 7 You can use jailkit, in cwp you,ve the option for it under shell access. Link to comment Share on other sites More sharing options...
sal83 Posted January 7 Author Share Posted January 7 Thank you very much Sandeep. I was able to enable the jailkit for ssh access. How do i add additional command binaries such as nano, composer, php artisan(laravel) and wp cli commands to the list of commands allowed. which jk_lsh file need to be changed for this? Link to comment Share on other sites More sharing options...
Sandeep B. Posted January 8 Share Posted January 8 jk_cp -k -j /home/jail/username /usr/bin/nano jk_cp -k -j /home/jail/username /usr/local/bin/php jk_cp -k -j /home/jail/username /usr/bin/clear jk_cp -k -j /home/jail/usernamem /usr/bin/composer you can do it like upper example Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now