CPanel Root Login
May 28, 2009Is it possible to disable direct root login on Cpanel servers?
if yes, please how.
If not, what would be the best to do to secure 'root' account.
Is it possible to disable direct root login on Cpanel servers?
if yes, please how.
If not, what would be the best to do to secure 'root' account.
can not login root from SSH, LT suggest me to do KVM over IP
View 4 Replies View RelatedMeaning you can't use the user root to login to WHM.
Is that possible?
We have an internal server running Red Hat 8 or 9 that was taken offline at least 18 months ago. The guy who set up the box is long gone. Unfortunately with him went the root password. It wasn't a big deal until we realized there is some code we do want to get off of that box now that may be useful in a future project. In particular the database structure for one project. Is there any way to get access to this data or is it just lost?
View 3 Replies View Relatedim able to login to root via SU perfectly
One problem: All my old files and folders are owned by ROOT so that means my SU account named XXX cant edit/add/delete anything from my SFTP because of folder/file permission.
Is there anyway my SUDO(wheel) account can still edit these files own by ROOT?
Want to be notified instantly when someone logs into my server as root With date time & local IP address
View 12 Replies View Relatedlogin as: hen
hen@xx.xx.xx.xx's password:
Last login:
hen@root [~]# su -
Password:
su: incorrect password
I verified that root password is correct, but no matter how many times I tried, I can't su in
Where's my su permission
-rwxr-xr-x 1 root wheel 24060 Mar 22 2007 /bin/su*
here's inside /etc/group
wheel:x:10:root,hen
I tried to disable direct root login but had to struggle to find step-by-step instructions and have written the steps one needs to follow to disable direct root login.
This is an additional security measure where we prevent direct root logins and instead create a user to login and then use a command ‘su –‘ to gain root privileges.
The only risk in this procedure is that you may prevent root login but forget to add the user to the wheel group - effectively locking yourself out of the system.
Follow the steps below and you will not face a problem.
STEP 1: Let us create a user and add it to the wheel group.
For e.g. we want to create a user neonix and give him root privileges.
SSH into your server as root and follow the below commands to create a user.
groupadd neonix
useradd neonix –gneonix
passwd neonix
enteryouruserpasswordhere
verifyyouruserpasswordhere
// Please note -g in the second line
// You can replace neonix with any username of your choice.
STEP 2: Add user to wheel group.
Use your browser to Login to your WHM panel and click on Manage Wheel Group Users.
You will see the user you just added (neonix). Select the user and click ‘Add to group’.
You will see that the user has been added –
Users Currently in the wheel group root,neonix
You have successfully added a user to the 'wheel' group who will be able to 'su -' to root.
LOGOUT OF SSH
Before we disable root login, let us check if the user can login and su – to gain root privileges.
SSH into your server as 'neonix'
Login as: neonix
Password : enteryouruserpasswordhere
su –
password: enter root password here
You have successfully logged in and have root privileges. Now let us disable root login.
STEP 3: Disable Direct Root Login
(The below steps are from webhostgear.com)
1. Copy and paste this line to edit the file for SSH logins
pico -w /etc/ssh/sshd_config
2. Find the line
Protocol 2, 1
3. Uncomment it (Remove #) and change it to look like
Protocol 2
4. Next, find the line
PermitRootLogin yes
5. Uncomment it (Remove #) and make it look like PermitRootLogin no
6. Save the file Ctrl+X then Y then enter
7. Now you can restart SSH
/etc/rc.d/init.d/sshd restart
Now, no one will be able to login to root with out first logging in as 'neonix' and 'su -' to root, and you will be forcing the use of a more secure protocol.
Just make sure you remember both passwords!
Currently I have a server that has direct root SSH access disabled (have to login as regular user then su to root), but I am currently working on setting up authentication via SSH keys, but I can't seem to get it working with direct root SSH access disabled? Is this normal, and if so is there anyway to work around it?
Basically I'd like to be able to authenticate both ways; both with SSH keys or by logging in as a regular user and su to root.
i can not login to my decated server by using root. the password is not correct.. becasue i did something wrong with my server. i used chmod 777 -R /public_hmtl and chown to modify my server. and i can not login anymore, LT asked me to reload my server, do i need to reload it?
View 6 Replies View RelatedI want to have an email alert everytime someone login into my server using ROOT user.
The server is based on Linux system.
Any way to backup every SQL Databases at once ?
At the moment i need to configure each subscription on my backup program to backup each sql database.
there is any way to set a login that back's up all the databases?
And for the ftp files?
During the installation of Plesk, at first it used the root password, and then had me create an "admin" user.
When I log in using either I don't see any difference in the UI or options. Is there a difference or a reason to use one over the other?
Or is it just to give someone access to admin Plesk without giving them full root password of the server itself?
Just got a new additional VPS with WHM/cPanel.
Browse to www.mydomain.com/webmail and get login box > login accepted and taken to Horde/Squirrelmail choice screen > choose Squirrelmail and get login box ... login not accepted! > Retry and choose Horde ... login not accepted!
The login is correct and the results are the same when logging in as root, or through /cPanel or /Webmail.
I have read that although chained root ssl certificates can be more difficult to install they are actually more secure since the root certificate cannot be compromised, only the intermediary.
Is this true? It looks like both google and amazon both use chained SGC certs.
i have a problem with my box .. after i reboot the server the login to whm or cpanel didn't work ... everytime i must use this command
/etc/rc.d/init.d/iptables stop
then the logins work successfully
so .. what's the problem with the iptables with me?
I have someone on my server that is having problems login to Cpanel and WHM.
They can view all websites on the server even theirs, but they cannot login.
They keep getting: Firefox cannot establish a connection with the server.
Even in IE they get a error message.
They even tried with "theirdomain.com/cpanel" and got the same thing.
They are using a rounter also, so I told them to try unhooking that, but my main question is, it doesn't seem that their IP is blocked as I checked, so is there anything else on the server that could cause this or is it something on their end?
I've unmanaged server, everything running well
but I can't login into cpanel/whm I tried :
>myip:2086
>myip:2087
>myip:2082
>myip:2083
when I try to login the [The connection was reset]Firefox msg.
I can login through ssh,and i tried to restart cpanel service and I update it...
i worrying about WHM/CPanel login without SSL, it possible to install SSL?
View 5 Replies View RelatedI am using VPS and cpanel/WHM is installed on it.
When I try to login the Cpanel it gives me following URL.
====================================================================
121.246.209.2 - threesom [04/20/2008:07:08:36 -0000] "GET /frontend/x2/index.html HTTP/1.1" 404 0 [url]
(compatible; MSIE 7.0; Windows NT 5.1; .NET CLR 2.0.50727)"
====================================================================
I am struggling to find the best cpanel login script, mixed with modernbill (5)
cpanel
whm
webmail
modernbill (5x)
I found this (w/o MB)
[url]
However, trying this I get this error
Warning: Cannot modify header information - headers already sent by (output started at /home/user/public_html/login.php:1) in /home/user/public_html/login.php on line 37