Enable additional Jailkit like php, wp-cli, nodejs, composer for new and existing users

I want to enable all available jailkit apps for new and existing users.

Please check the screenshot. Whatever is available here: https: //example .com:10000/jailkit/?xnavigation=1

I enabled jailkit for domain, under Administrator option it works fine.

But when logged in as Jail user, I can use PHP command only, not other commands which I added later after creating jailed users?

How to updated existing users?

Btw: When jailkit was on, WordPress was not able to make connection to database.

Fix: Edit wp-config.php file and replace 'localhost' with '127.0.0.1'

Thanks

Status: 
Active

Comments

Ilia's picture
Submitted by Ilia on Tue, 03/24/2020 - 05:02

Hi,

It may be effortful to set up. What is the point of doing it? If you run Apache as a website owner (FPM or (F)CGI), it should be more than enough in most cases.

Anyway, if you feel like that's exactly what you need, then have a look at Virtualmin Configuration/Advanced Options and Additional Jailkit sections to copy option.

Hi

"If you run Apache as a website owner (FPM or (F)CGI), it should be more than enough in most cases."

So, if there are many users on same server then, and if someone hacks into one site, then he cannot access files of other site of same client? It looks that virtualmin creates new user for every site. So, other sites of same client are safe?

"Anyway, if you feel like that's exactly what you need, then have a look at Virtualmin Configuration/Advanced Options and Additional Jailkit sections to copy option."

Thanks I'll try this too, you guys have created such features so someone like me should really use it xD

Many thanks

Ilia's picture
Submitted by Ilia on Tue, 03/24/2020 - 14:37

So, if there are many users on same server then, and if someone hacks into one site, then he cannot access files of other site of same client?

If by many users you mean just UNIX users and by server you mean not virtual-server (domain) but virtual-machine or physical bare metal server, then yes. Ideally, you should create new virtual-server (not sub-server) for any new user (different person). In case the site is hacked, the hacker will only get access to the files and folders of the current user. This is the whole point for running each virtual-server as different user. Don't use mod_php and create new virtual-server instead of sub-domain (even if it's user1.maindomain.com) for each individual, and you will be fine.

Got it, Thanks so much. :)