Posted January 6, 20241 yr comment_403 Hi - I have enabled Apaxche/NGINX/Varnish/PHP-FPM with Redis, Mongo, PGSQL, NodeJs and Memcached on the server. I want to provide SSH access to the clients for them to run CLI commands. What security controls should i establish on the server to harden before providing SSH access? I understand REDIS etc. might require specific hardening before providing SSH access to end clients. Kindly advise.
January 7, 20241 yr comment_406 You can use jailkit, in cwp you,ve the option for it under shell access.
January 7, 20241 yr Author comment_408 Thank you very much Sandeep. I was able to enable the jailkit for ssh access. How do i add additional command binaries such as nano, composer, php artisan(laravel) and wp cli commands to the list of commands allowed. which jk_lsh file need to be changed for this?
January 8, 20241 yr comment_409 jk_cp -k -j /home/jail/username /usr/bin/nano jk_cp -k -j /home/jail/username /usr/local/bin/php jk_cp -k -j /home/jail/username /usr/bin/clear jk_cp -k -j /home/jail/usernamem /usr/bin/composer you can do it like upper example
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now