Symptoms
- Subscription user can view files and folders that do not belong to the subscription space when logged into the server via SSH/SFTP.
- It is also possible to access files outside of subscription space if they are specified in Domains > example.com > Git > Additional deploy actions field.
-
The Access to the server over SSH option is set to one of the values below on the Plesk > Subscriptions > example.com > Web Hosting Access page:
- /bin/sh
- /bin/bash
- /usr/bin/sh
- /usr/bin/bash
- /bin/tcsh
- /bin/sch
- /bin/rbash
Cause
This behavior is expected, the subscription user will be able to access files only within its subscription space if the Access to the server over SSH is set to /bin/bash (chrooted).
Resolution
-
Go to Plesk > Subscriptions > example.com > Web Hosting Access.
-
From the drop-down menu Access to the server over SSH select /bin/bash (chrooted) option.
-
Press the OK button to apply the changes.