04-18-2007
Hi, mz043.
As far as I know, you have two options:
- One is to create a chroot jail for your users (As you've been told). This involves several tasks: create a dummy "root filesystem", copy libs, binaries, etc... The use of sudo, and some shell scripting among others. There are lots of info on the Net, depending on your OS.
- The other is the use of a restricted shell. I don't know what OS you are using but perhaps a "man -k restricted" would give you some clues
Regards.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hello!
I want users in a certain group to be restricted to their home directory. So that they have full access to all files and folders in their home directory but the cant go to any directory above.
Does anyone know how to do this?
Anders (1 Reply)
Discussion started by: alfabetman
1 Replies
2. UNIX for Dummies Questions & Answers
Hi
I want to know which profile will be called when a user without home directory is created.
When I created a user without home directory(by setting in /etc/default/useradd), the user is able to login directly into the main "/" folder but with only read permissions.
Thanks
naina (3 Replies)
Discussion started by: naina
3 Replies
3. UNIX for Dummies Questions & Answers
I'm using HPUX 11i. The other day a user logon to the workstation and was not able to find the /home/directory (tom is the directory) I login myself and it is the same thing.
The home directory is on the server, so I was thinking of using sam to map it again. does anyone know how to do it... (5 Replies)
Discussion started by: blizzgamer
5 Replies
4. Solaris
How to find al the user's home directories? (2 Replies)
Discussion started by: a2156z
2 Replies
5. Solaris
Hi Guys,
I have a problem with configuring a server. this is a solaris 10 with sparc platform.
I have setup so that the server is Authenticating through NIS but I dont want the server to Mount the Home directories. The users need to logged in through the CDE/display.
I have over 200 users... (2 Replies)
Discussion started by: Luky
2 Replies
6. UNIX for Advanced & Expert Users
RHEL5.0
As we know, when root create a new user, a new home directory will be created : /home/user
I want to know what determine the access permission of /home/user .
Thanks! (1 Reply)
Discussion started by: cqlouis
1 Replies
7. Shell Programming and Scripting
Following on from this post:
https://www.unix.com/shell-programming-scripting/150201-simple-script-mount-folder-all-users-home.html
and getting told off for bumping the thread:(
Please could someone help me with a short script to check is a certain directory is present in /home for all users... (8 Replies)
Discussion started by: barrydocks
8 Replies
8. Red Hat
Hi friends,
I must to give ssh connection to own customer.
So I want to lock ssh user on own home directory. It is not necessery to reach other folders. I know that ftp user can lock on own folder but I don't know how to lock ssh user.
I am waitting your kindly helps :D
---------- Post... (10 Replies)
Discussion started by: getrue
10 Replies
9. AIX
Hello,
I must close ssh users to the home directory.
It means the users musn't see anything inside their home directory.
For example after login to the os and type this command "cd .."
or "cd /" it musn't work.
How can I implement it?
(Probably chroot or rootsh but how?) (1 Reply)
Discussion started by: jeszi
1 Replies
10. UNIX for Advanced & Expert Users
Hi,
I have created a shared directory on /home, where all users on a certain group have read, write and execute permissions.
I did this using
chmod -R g+rwx /home/shared/
The problem is, when a particular user creates a directory within /home/shared, other users are not able to write to... (8 Replies)
Discussion started by: lost.identity
8 Replies
LEARN ABOUT DEBIAN
luseradd
luseradd(8) System Manager's Manual luseradd(8)
NAME
luseradd - Add an user
SYNOPSIS
luseradd [OPTION]... user
DESCRIPTION
Adds an user with name user.
OPTIONS
-c, --gecos=gecos
Set the GECOS field to gecos. The GECOS field is traditionally used to store user's real name and other information.
-d, --directory=directory
Set user's home directory to directory. If this option is not present, a default specified by libuser configuration is used.
-g, --gid=group
Set user's primary group to group. group can either be a group ID of an existing group, or a group name; if group is a group name
and the group does not exist, it is created. If the --gid option is not specified, the default group name is user.
-i, --interactive
Ask all questions when connecting to the user database, even if default answers are set up in libuser configuration.
-k, --skeleton=directory
Populate the newly created user's home directory with a copy of directory. If this option is not present, a default directory spec-
ified by libuser configuration, or /etc/skel if libuser configuration does not specify a default, is used.
-M, --nocreatehome
Don't create a home directory and a mail spool for the newly created user.
-n, --nocreategroup
If a group is not specified using -g, use group name "users" instead of user. Note that despite the name of the option, the group
will still be created if it does not exist.
-P, --plainpassword=password
Set user's password to password. Note that the password can be viewed while running luseradd using tools such as ps(1).
-p, --password=encrypted
Set user's password to the password represented by the hash encrypted. Note that the hash can be viewed while running luseradd
using tools such as ps(1).
-r, --reserved
The user is a system user. Users that are not marked as system user usually have automatically selected user IDs above a certain
value (500 by default). This information is also passed to the libuser backends. This option implies the -M option.
-s, --shell=shell
Set user's login shell to shell. If this option is not present, a default specified by libuser configuration is used.
-u, --uid=uid
Use user ID uid for the newly created user. An user ID is selected automatically if this option is not present.
EXIT STATUS
The exit status is 0 on success, nonzero on error.
libuser Jan 12 2005 luseradd(8)