Disable access to root from Plesk users

Posted April 16, 2020 1k views
CentOSSecurityInitial Server Setup

Hello, I have a droplet with CentOS 7 and Plesk installed from marketplace. I have also followed the initial CentOS 7 server setup and disabled root access from ssh.
But for users that have access to their Plesk accounts, they can su root and that will prompt a password.

Is there a way to block this su command for only a specific high privilege user as the one created on the initial server setup?

Is there something else to add security to the server?

Thank you.

edited by AHA

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer

Hi @danielpcharrua,

This is something that can’t be avoided. What I can think of is the sudoers file - /etc/sudoders which grants/takes away privileges for commands however executing ‘su root’ isn’t one of them I think/

In such a case, what I’ll recommend for security would be to jailshell the user’s SSH sessions, that should be enough.