Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Limiting access
Top Forums UNIX for Dummies Questions & Answers Limiting access Post 1313 by PxT on Friday 23rd of February 2001 11:42:16 AM
Old 02-23-2001
1) Since the 'cd' command is a shell builtin, you would have to write (or modify) your own shell to remove the ability to change directories with this command. An alternative might be to have his login script run a program which calls the chroot() system call. do a 'man chroot' for information.
I suggest finding a local Unix guru to help you.

2) Contact an ISP and pay them to put your DNS info in their servers, or look into using <A HREF="http://soa.granitecanyon.com/">The Public DNS Service</A>.
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

question about limiting the display from the ls command

hey guys im rly new to unix. im attempting to list the 5 largest files in a directory. so i got this far... ls -lR | sort -r and this lists all files by filesize, how can i limit this to only the 5 largest? (4 Replies)
Discussion started by: Aesop
4 Replies

2. HP-UX

limiting failed logins to three

I have tried limiting failed logins to three by the following method logins -ox \ | awk -F: '($8 != "LK" && $1 != "root") { print $1 }' \ | while read logname; do /usr/lbin/modprpw -m umaxlntr=3 "$logname" done /usr/lbin/modprdef -m umaxlntr=3 but it is failing on the 4th... any ideas?... (1 Reply)
Discussion started by: csaunders
1 Replies

3. Shell Programming and Scripting

limiting data inputs for the user

if my user has to enter the name of months to carry out a search how can I limit the input values to only the month names and nothing else? so far my input criteria for the user is this: i would like it so the user can only enter the months in the way i have stated. otherwise they would... (11 Replies)
Discussion started by: amatuer_lee_3
11 Replies

4. HP-UX

Limiting SFTP Users While Not Limiting Regular Users?

Hi, I have searched the web and have come back with nothing that is satisfactory for what I require. SFTP is my corporations new file transfer standard. What I require is a method to lock down SFTP users to their directory (they may go to sub directories) while not restricting regular users. ... (2 Replies)
Discussion started by: Emancipator
2 Replies

5. Solaris

Limiting number of processors used by an application

Hello, Using a Solaris SunOS 5.10, is there anyway to limit the number of processors utilised by an external vendor application over the server, from the unix OS perspective? (1 Reply)
Discussion started by: pgop
1 Replies

6. Emergency UNIX and Linux Support

Limiting a user to a script upon login, nothing else.

Hi there, I have a Debian 5.0 server that my company uses for deployment testing. This server needs to be accessed by NOC people that have no NIX knowledge whatsoever. I am creating a bash script for a menu-based command interface for the commands they need to run on their testing routines,... (21 Replies)
Discussion started by: ppucci
21 Replies

7. Solaris

Limiting Connections from a single IP

I'm looking for a way to limit connections to a Solaris 10 box from any single IP. The problem is that I've had more experience doing this with IPTables on Linux, rather than with IPFilter, which I've found to be somewhat feature-poor. I hope there is some way to do this using IPFilter, I've... (2 Replies)
Discussion started by: spynappels
2 Replies

8. UNIX for Advanced & Expert Users

Limiting access to postqueue

Hi, I have a Debian 6 machine running Postfix 2.7.1. The email server works pretty well. I discovered that any non-root user can access to the mail queue using postqueue command just like root. How can I limit this access? (1 Reply)
Discussion started by: mjdousti
1 Replies

9. Shell Programming and Scripting

Limiting the Script

Greetings. I have script to monitor the disk space of folder it runs every 17 min with help of cron. It sends email when disk size reaches to 85 %. Now the issue is that it continousely generates email until we clear some space in that folder. Is it possible to restrict the Script to send only... (14 Replies)
Discussion started by: manju98458
14 Replies

LEARN ABOUT OSF1

chroot

chroot(8)						      System Manager's Manual							 chroot(8)

NAME

       chroot - Changes the root directory of a command

SYNOPSIS

       /usr/sbin/chroot directory command

DESCRIPTION

       Only  root  can	use  the chroot command.  The chroot command changes the root directory from / to the specified directory when the command
       executes. (The command specified includes both the command name as well as any arguments.) Consequently, the root of any path (as indicated
       by  the first / (slash) in the pathname) changes to directory and is always relative to the current root.  Even if the chroot command is in
       effect, directory is relative to the current root of the running process.

       Several programs may not operate properly after chroot executes.  You must ensure that all vital files are present in  the  new	root  file
       system and the relevant pathnames for the files map correctly in the new root file system.

       For  example,  the ls -l command fails to give user and group names if the new root file system does not have a copy of the /etc/passwd and
       /etc/group files.  If the /etc/passwd and /etc/group files in the new root file system represent different user and group names,  then  the
       output  from  the  ls  -l  command will be based on those names, not the ones for the system's own name database.  Utilities that depend on
       description files produced by the ctab command may also fail if the required description files are not present in the new root file system.

       The chroot program uses the execv() function to invoke the specified command.  As a consequence, the command  specified	must  be  an  exe-
       cutable	binary,  not  a shell script.  Further, if the program requires indirect loading (for example, due to unresolved symbols requiring
       use of a shared library), then /sbin/loader as well as any files it requires (for example, shared libraries) must be  present  in  the  new
       root file system in the appropriate locations.

EXAMPLES

       To run a subshell with another file system as the root, enter a command similar to the following.  Note in this example, the file system is
       on the /dev/disk/dsk13a device and is mounted to /mnt/dsk13a: chroot  /mnt/dsk13a  /sbin/sh The command shown in the previous example spec-
       ifies a change from the current root file system to the one mounted on /mnt/dsk13a while /sbin/sh (which itself is relative to the new root
       file system) executes.  When /bin/sh executes, the original root file system is inaccessible.  The file system mounted on /mnt/dsk13a  must
       contain	the  standard  directories  of a root file system. In particular, the shell looks for commands in /sbin, /bin, and /usr/bin (among
       others) on the new root file system.

       Running the /sbin/sh command creates a subshell that runs as a separate process from the original shell.  Press to exit	the  subshell  and
       return to the original shell.  This restores the environment of the original shell, including the meanings of the current directory (.) and
       the root directory (/).	To run a command in another root file system and save the output on the initial root file system, enter a  command
       similar to the following.  Note in this example, the file system is on the /dev/disk/dsk13a device and is mounted to /mnt/dsk13a:

       chroot  /mnt/dsk13a  /bin/cc  -E  /u/bob/prog.c	> prep.out

       The previous command runs the /bin/cc command with /mnt/dsk13a as the specified root file system.  It compiles the /mnt/dsk13a/u/bob/prog.c
       file, reads the #include files from the /mnt/dsk13a/usr/include directory, and puts the compiled text in the prep.out file on  the  initial
       root file system.  To create a file relative to the original root rather than the new one, use this syntax and enter:

       chroot  directory command > file

CAUTIONS

       If special files in the new root have different major and minor device numbers than the initial root directory, it is possible to overwrite
       the file system.

FILES

       Specifies the command path.

RELATED INFORMATION

       Commands:  cc(1), cpp(1), ls(1), sh(1)

       Functions:  chdir(2), chroot(2) exec(2) delim off

																	 chroot(8)
All times are GMT -4. The time now is 01:52 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy