Login or Register to Ask a Question and Join Our Community


Solaris

need to restrict user to his home dir

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Solaris need to restrict user to his home dir
# 1  
Old 12-24-2007
need to restrict user to his home dir
Hello,

i need to create a user who's access is restricted only to his home directory and below,

i restricted his pty access by adding 'no-pty' to the options of the ssh key in authorized_keys file. However, sftp access still allows this user access to all my file system

thanks
# 2  
Old 12-24-2007
Then look at the groups he belongs to and determine what permissions each of your directories should have.
# 3  
Old 12-24-2007
You could look at using chroot to restrict the permissions.
Basically it makes that shell think its "/" is its home, and so it cannot move to a directory above.
If you google for chroot ftpd, you should find an example of the general process.
# 4  
Old 12-24-2007
my user belongs to nogroup

googled my way through...

scponly looks like it could work, but setuiding the original binaries makes me uneasy (maybe because i don't know enough about what could happen). Main Page - Scponly wiki

rssh has been used widely but isn't updated often. rssh - restricted shell for scp/sftp

Or else i can create a shell to use the sftp binary and support chroot: HOWTO: chroot SFTP (only)

so, 1) with S10 do i really need to build my own sftp/ scponly shell?
2) if i do need to create my own solution, which of the above 3 do you suggest?

thanks
Last edited by lidram; 12-24-2007 at 11:49 PM..
# 5  
Old 01-03-2008
i used the chroot sftp. very easy to setup and works as it should. I edited /etc/ssh/sshd_config to use the newly created sftp binary rather than the default Solaris one.

I do recommend to use ssh options such as no-pty to restrict user's ssh access, rather than the ones suggested by the page
# 6  
Old 02-06-2008
SFTP Setup
Hi ,

Can you please tell me how do you setup sftp..

Regards

Pradeep Rajput
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Switching from root to normal user takes me to user's home dir

Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user. How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies

2. Solaris

remove a user without removing its home dir

HI all, I have wrongly given a wrong home directory to a user. This dir is very critical for my production environment(Can;t afford to lose it for a single minute) Now i want to delete that user, Whenever i try to delete user it tries to delete its home dir. Commnd i use: userdel ... (9 Replies)
Discussion started by: varunksharma87
9 Replies

3. Solaris

how to change /export/home/user dir to /home /user in solaris

Hi all i am using solaris 10, i am creating user with useradd -d/home/user -m -s /bin/sh user user is created with in the following path /export/home/user (auto mount) i need the user to be created like this (/home as default home directory ) useradd -d /home/user -m -s /bin/sh... (2 Replies)
Discussion started by: kalyankalyan
2 Replies

4. Linux

SFTP user access restriction to his home dir

Hi Friends, I have installed a FTP Server on my Linux machine (Fedora 11). I want the ftp users to be restricted to their own home dir using sftp. But the said condition is met when the user logs in using ftp over port 21 and when the user logs in using sftp i.e. protocol 22, he/she has... (4 Replies)
Discussion started by: pashy
4 Replies

5. AIX

Not able to mount user home dir from with automount

Hello there Have anyone configured an AIX 5L machine as NIS client? with homedirectories automounted form an NFS share? The NIS server is running Solaris. I am able to configure the AIX machine as client and user is able to login but I have configured the client to use the automountd... (0 Replies)
Discussion started by: balaji_prk
0 Replies

6. UNIX for Dummies Questions & Answers

unable to set user home dir

I created a new user and changed their home directory to /export/home/mydir/ I verified in the passwd file that the home directory is set to the above and that owner of that directory is the new user and yet when I log in as that user I get the following message: No directory! Logging in with... (14 Replies)
Discussion started by: some_one
14 Replies

7. UNIX for Dummies Questions & Answers

restrict one user to see only his home directory in his profile

Hi I need to restrict one user to see only his home directory and one more directory how i can do this in his profile. The OS is Red hat linux I create a user -- tec and group calle --tec one the user log in he will see /home/tec and he need to see /opt/load this dirctory... (6 Replies)
Discussion started by: aboorkuma
6 Replies

8. UNIX for Dummies Questions & Answers

Restrict user access to their home dir

Hi! i'm using FreeBSD 6.2 and hosting my pc to frens in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only? and also, i wanted to restrict them listing files under /etc thanks all! (10 Replies)
Discussion started by: rdns
10 Replies

9. UNIX for Dummies Questions & Answers

listing home dir of anothe user

Hi I am trying to display the home directory of another user. I dont have the permissions to change into their directory and wonder is it possible to display their directory eg I cant change directory to john but I am trying to display something like /home/John. If anyone can help I would... (3 Replies)
Discussion started by: mmg2711
3 Replies

10. UNIX for Dummies Questions & Answers

Modify user home dir

I created a new user and assigned a certain home dir to tis user. I've noticed that this home dir (/export/home/test) is already assigned to other users. I really want to create a dedicated home dir for the new user. Can anyone tell me how I can modify this user with a new homedir? Thx for... (4 Replies)
Discussion started by: kris_devis
4 Replies
Login or Register to Ask a Question