Skip to content

I suggest you ...

← Product Improvements: Flexible

Allow closing shellinabox

The shellinabox service that runs on port 4200 is not secure enough, for a number of reasons:
* it accepts non-TLS traffic
* no multifactor authentication
* no battle-tested frontend webserver like nginx before it

Instead of fixing all of these, perhaps just allow to disable this service like you allow for other services.

3 votes

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Anonymous shared this idea  ·   ·  Report…  ·  Admin →
How important is this to you?

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment
  • Anonymous commented  ·   ·  Report

    Just wanted to echo this great suggestion. Having this port open (without the ability to close it) poses a lot of security issues.

    Currently, any effort for closing this port requires 'sudo' privilege, which Cloudways does not allow for obvious reasons.

Product Improvements: Flexible: Security

Categories