If you have CloudLinux installed on the server, you will able to setup CageFS on your server.
CageFS is a virtualized file system which enables each user to have its own cage.
With CageFS : # Only safe binaries are available for user # User will not able to see files/data of any other users on server # User will not able to see server configuration files such as Apache/mysql/exim config files # User will have limited access of /proc file system and will not be able to see other users running processes
CageFS works with # cPanel WHM # Plesk # DirectAdmin # ISPmanager # Interworx # MySQL # PostgreSQL # LiteSpeed
To install CageFS:
$ yum install cagefs
$ /usr/sbin/cagefsctl –init
That last command will create skeleton directory that might be around 7GB in size. If you don’t have enough disk space in /usr/share, use following commands to have cagefs-skeleton being placed in a different location:
$ mkdir /home/cagefs-skeleton
$ ln -s /home/cagefs-skeleton /usr/share/cagefs-skeleton
On cPanel servers, if you will be placing skeleton into /home directory, you must configure the following option in:
cPanel WHM -> Server Configuration -> Basic cPanel/WHM Setup -> Basic Config -> Additional home directories
Change the value to blank (not default “home”)
Without changing this option, cPanel will create new accounts in incorrect places.
Once you initialize the template you can start enabling users.
By default, CageFS is disabled for all users.