|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
Changing directory on Unix
Post 22447 by iat00 on Tuesday 4th of June 2002 07:29:17 AM
06-04-2002
Re: Changing directory on Unix
Try this (as root, of course):
# chown A ~A
# chown B ~B
# chmod 700 ~A ~B
Now nobody else can change into home directory of them. They can do theirself and root only.
Changing to a directory requires execution right (-x-), reading the contents of a directory requires read right (-r-).
So it depends on what exactly you want to allow them. For example if you want to allow A to change to ~B (~ means home directory of ...) but not to allow to read:
# groupadd oaandb (only A and B)
# usermod -G oaandb A
# usermod -G oaandb B
# chgrp oaandb ~B
# chmod g+x ~B
You can use access control lists (ACL) to eliminate creation of this kind of groups everytime
# chown A ~A
# chown B ~B
# chmod 700 ~A ~B
Now nobody else can change into home directory of them. They can do theirself and root only.
Changing to a directory requires execution right (-x-), reading the contents of a directory requires read right (-r-).
So it depends on what exactly you want to allow them. For example if you want to allow A to change to ~B (~ means home directory of ...) but not to allow to read:
# groupadd oaandb (only A and B)
# usermod -G oaandb A
# usermod -G oaandb B
# chgrp oaandb ~B
# chmod g+x ~B
You can use access control lists (ACL) to eliminate creation of this kind of groups everytime
Quote:
Originally posted by taher_n
Hi,
Can you please help ? I work on SCO Unix Open server Rel. 5.
User root on Unix can change/view/modify any files belonging to any user on a file system.
Is there any way where I can prevent non-root users to change thier directories to other non-root users area.
for eg. There are 2 users User A and User B.
User A's home directory is /A
User B's home directory is /B
My objective is user A should not be allowed to change his pwd (present working directory) to /B and user A should also not be allowed to list the files which are stored in /B directory ( home of user B).
Setting necessary read-write-execute permissions does not prevent either users to change directories in each others area and they are still able to list what files are stored in each others directories.
Is there any way ?
Thanks for your time and regards.
Taher
Hi,
Can you please help ? I work on SCO Unix Open server Rel. 5.
User root on Unix can change/view/modify any files belonging to any user on a file system.
Is there any way where I can prevent non-root users to change thier directories to other non-root users area.
for eg. There are 2 users User A and User B.
User A's home directory is /A
User B's home directory is /B
My objective is user A should not be allowed to change his pwd (present working directory) to /B and user A should also not be allowed to list the files which are stored in /B directory ( home of user B).
Setting necessary read-write-execute permissions does not prevent either users to change directories in each others area and they are still able to list what files are stored in each others directories.
Is there any way ?
Thanks for your time and regards.
Taher
|
|
10 More Discussions You Might Find Interesting
1. Programming
hi,
I'm doing to some simple socket programming.
I have a client that connects to the server and request stuff.
For example, if the client type in "ls", that command will be sent to the server and the server will send back the ls information the client requested. Similarly, if the client type... (1 Reply)
Discussion started by: bb00y
1 Replies
2. UNIX for Dummies Questions & Answers
Hi Friends !
I want to change my current directory through a script.
I am running the script say, from /home/proj directory.
The script is like this :
#!/usr/bin/sh
cd module/pack/data
once i run the script, i am still in /home/proj directory only.
My problem is, i dont want to type... (5 Replies)
Discussion started by: mrgubbala
5 Replies
3. Windows & DOS: Issues & Discussions
Just installed SFU in my PC running under Windows XP Pro. Could someone tell us how to change directory and to its subdirectories either by Korn Shell or C Shell?
I tried, cd f:\ or chdir f:\ but it didn't work. (1 Reply)
Discussion started by: ilak1008
1 Replies
4. Shell Programming and Scripting
Hello All:
I have an LDAP server that is used for authentication. Now the home directory id set to : /export/home/user1 . But I am logging in to different machines Solaris, Linux. The problem is I want the home directory to change depending on the os version (e.g. /export/home/user1/linux). Can... (1 Reply)
Discussion started by: disturbe_d
1 Replies
5. UNIX for Dummies Questions & Answers
I thought this was as easy as a piece of cake. But it has had me spinning. Here is how my script looks like:
When the script finishes and I pwd, I am back to square one. Any help? Thanks in advance.
HP-UX hostname B.11.23 U ia64 3308722091 unlimited-user license (5 Replies)
Discussion started by: ron_it_guy
5 Replies
6. UNIX for Dummies Questions & Answers
Hi,
I am in /home/development/project/abc directory. Now I want to remove one file which is kept in /trial/dev/<file> directory.
I would like to do it in one command.
I tried changing directory in one command like:
pwd
/home/development/project/abc
cd ~/trial/dev/
bash: no command... (2 Replies)
Discussion started by: palak08
2 Replies
7. UNIX for Dummies Questions & Answers
Hi, Im getting this annoying problem on file permission when I copy a folder to a mounted external directory. the files inside the copied folders become all executable. I tried to search for ways how to undo the permission over the web but to no avail.
tried this one but it doesnt change a... (2 Replies)
Discussion started by: ida1215
2 Replies
8. Solaris
Hi ,
I want to change owner of files or folder from 23186 to dsadm,
Present
-------
-rw-r--r-- 1 23186 gdstage 10240 Oct 31 2007 BLTRS
drwxrwxrwx 3 23186 gdstage 512 Sep 1 2010 sql
Required as
-----------
-rw-r--r-- 1 dsadm gdstage 10240 Oct 31 2007 BLTRS
drwxrwxrwx 3 dsadm gdstage... (6 Replies)
Discussion started by: sridhardwh
6 Replies
9. Shell Programming and Scripting
Hi guys,
I have lots of files that look like:
ABC.packed.dir
DEF.packed.dir
GHI.packed.dir
etc...
I would like them to have more of the usual naming convention
ABC
DEF
GHI
etc...
so I was thinking that I could: (2 Replies)
Discussion started by: atjurhs
2 Replies
10. Shell Programming and Scripting
Hi could some let me know how to prevent user from changing his home directory.......
Thanks in advance.... (6 Replies)
Discussion started by: rahul547
6 Replies
LEARN ABOUT CENTOS
k5login
K5LOGIN(5) MIT Kerberos K5LOGIN(5) NAME
k5login - Kerberos V5 acl file for host access DESCRIPTION
The .k5login file, which resides in a user's home directory, contains a list of the Kerberos principals. Anyone with valid tickets for a principal in the file is allowed host access with the UID of the user in whose home directory the file resides. One common use is to place a .k5login file in root's home directory, thereby granting system administrators remote root access to the host via Kerberos. EXAMPLES
Suppose the user alice had a .k5login file in her home directory containing the following line: bob@FOOBAR.ORG This would allow bob to use Kerberos network applications, such as ssh(1), to access alice's account, using bob's Kerberos tickets. Let us further suppose that alice is a system administrator. Alice and the other system administrators would have their principals in root's .k5login file on each host: alice@BLEEP.COM joeadmin/root@BLEEP.COM This would allow either system administrator to log in to these hosts using their Kerberos tickets instead of having to type the root pass- word. Note that because bob retains the Kerberos tickets for his own principal, bob@FOOBAR.ORG, he would not have any of the privileges that require alice's tickets, such as root access to any of the site's hosts, or the ability to change alice's password. SEE ALSO
kerberos(1) AUTHOR
MIT COPYRIGHT
1985-2013, MIT 1.11.3 K5LOGIN(5)