Home/ Questions/Q 8499663
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-11T00:43:42+00:00

I am developing a control panel in PHP, i have the PHPsecLib libraries installed

  • 0

I am developing a control panel in PHP, i have the PHPsecLib libraries installed and am using it to issue commands to the remote servers.

For example;

$ssh->exec("cd /home/{$user}/{$id}; screen -S {$id} -A -d -m  java -Xmx768M -jar minecraft_server.jar nogui -nojline;");

Now my question is, because i am issuing the commands as root, is this a security threat, even when all the commands that are ran, are pre-made/hard coded and not from user inputs.

If this is an issue, could anyone advise the best way of doing it?

Thanks,
Harry

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You would not want to run as root. Rather, to harden the platform a bit if you are using sudo:

    username    ALL = NOPASSWD: /bin/screen, PASSWD: ALL

    This would allow your user: username to run screen without the need of sudo/password, but still require authentication for the rest of the executables on the platform.

    • 0