Shells are a user interface to access the operating system’s features. There are three kinds of Shell Access Modes available in WHM. They are Normal Shell, Jailed Shell, and Disabled Shell. The

Normal Shell

The normal shell allows the user access to the shell at any time without restrictions.

Jailed Shell

cPanel and WHM both use VirtFS to offer a jailed shell that allows users to connect to servers via SSH. The jailed environment acts as a container to the user, and doesn’t allow users to access home directories belonging to other users within the server. Jailed shell blocks the user’s ability to execute certain commands that could be harmful on the server. This increases the security of the server’s other functions.

Disabled Shell

Disabled shell prevents users access to the shell.

How do I modify Shell Access?

To change the user’s Shell access, you’ll need to visit WHM

• Search for option named Manage Shell Access under Account Functions
• Find the exact user for which you wish to enable SSH Access
• Choose exact SSH type available in front of exact user
• Select It and it will auto save

You can provide exact SSH port to your client, can ask them to make ssh connection by using their cPanel login details.

The post What are the different types of Shell Access Modes available in WHM? appeared first on .

Log4j Critical Log4Shell Vulnerability

Log4j is an Java library that includes drop-in feature to a variety of applications or software that are available online. It’s not something that they’d normally download and then use.

It’s an Java library that will be integrated into the application. This is because the end-users aaren’t aware whether the application or software they are using contains the vulnerability.

The vulnerability log4j is scored as a 10 on a scale of 1-10, with 10 being the highest risk degree of vulnerability that could impact your application.

cPanel Web Host Control Panel

cPanel is an administration panel that allows the owner of a website to manage their web hosting environment. cPanel provides a graphical User Interface (GUI) that is similar to a desktop. It allows you to perform tasks such as updating your version of PHP that websites use or control the firewall, and also add security certificates among others.

There are around three million customers using cPanel.

cPanel Plugin Log4Shell Vulnerability

A vulnerability in the Log4j Java library has been found within a crucial cPanel plug-in known as the cPanel Dovecot Solr plugin.

This plugin forms an important element in IMAP, the IMAP mail protocol.

As per cPanel

A forum discussion on cPanel’s official forums was the first to discover that cPanel had the log4j library, which could pose a security risk.

Within hours, a cPanel technical analyst had announced that a patch had been made available.

A forum discussion on cPanel’s official forums was the first to discover that cPanel had the log4j library, which could pose a security risk.

Within hours, a cPanel technical analyst had announced that a patch had been made available.

More details can be found here:
https://forums.cpanel.net/threads/log4j-cve-2021-44228-does-it-affect-cpanel.696249/

Conclusion

If you’ve got an unrestricted or virtual server that has cPanel installed and enabled Solr, the Solr plugin to cPanel the server could be at risk.

We strongly suggest that anyone with cPanel to ensure that they are running the most recent version that fixes this vulnerability.

To do this, sign in to WHM and navigate there: The Home tab > the cPanel menu > Update to the Latest Version

If you require help with this, or aren’t sure whether your server is at risk, you can contact us.

Be aware that if you’ve installed third-party programs on the server you are running, especially when it runs server side Java, this library could be also present. Please inquire with the software provider.

The post cPanel Plugin Contains Log4j Vulnerability – Update cPanel! appeared first on .