Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: restrict access of a user to two directories only
Operating Systems Linux Red Hat restrict access of a user to two directories only Post 302185586 by vikas027 on Tuesday 15th of April 2008 10:55:25 AM
Old 04-15-2008
Data
Quote:
Originally Posted by jim mcnamara
For the user test to be able to run some utilities he may need read access to some files perhaps in /etc or /lib.

Your best bet is to chroot this user - put the user in chroot jail, creates links in his home directory to /tmp1 & /tmp2. This is what is often done with ftp accounts to lock them into completely known file trees
Can you please exlain a little bit how to put this user in chroot jail.
Thanks.
 

10 More Discussions You Might Find Interesting

1. HP-UX

How to restrict a user group to access the kernel

Hi, Please any one can help me to know that how we can restrict a user group to access the kernel at all. (0 Replies)
Discussion started by: harishankar
0 Replies

2. UNIX for Advanced & Expert Users

Restrict FTP access to a single directory for only one user.

Hi All, It will be very great if you can help me in this issue. Thanks in advance. I need to enable FTP on a solaris9 server. I need to create a new user some "xxxxxx" and he can only FTP the files to and from between /tftpboot directory and network devices. Other users should not... (8 Replies)
Discussion started by: santhoshkumar_d
8 Replies

3. UNIX for Dummies Questions & Answers

Restrict user access to their home dir

Hi! i'm using FreeBSD 6.2 and hosting my pc to frens in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only? and also, i wanted to restrict them listing files under /etc thanks all! (10 Replies)
Discussion started by: rdns
10 Replies

4. UNIX for Advanced & Expert Users

Restrict Access to the folder

Hi I have requirement to create 3 new users on my server but to restrict their access to a set of particular folders. /export/home/kapil/shared, /export/home/kapil/shared/Folder1 /export/home/kapil/shared/Folder2 These folders should be accessible to all the 3 users and to me too.... (1 Reply)
Discussion started by: kapilk
1 Replies

5. UNIX for Dummies Questions & Answers

Restrict user access.

Hi All, How can we restrict a particular user access to a particular shell in solaris 10. Thanks in Advance. (5 Replies)
Discussion started by: rama krishna
5 Replies

6. Red Hat

Restrict user access

Hi there I have an application user on my system that wants accesses to these file systems as such: rwx: /SAPO /SAPS12 /R3_888 /R3_888B /R3_888F /R3_888R r: /usr/sap these are the existing FS permissions:ownerships: # ls -ld /SAPO (9 Replies)
Discussion started by: hedkandi
9 Replies

7. UNIX for Dummies Questions & Answers

Rsync on Cygwin - Restrict user to several directories

Hi, I'm using rsync on cygwin (winXP) to sync our files between several laptops and XP (acting as a file server) For simplicity I use the same user account with different certificates over SSH. Now my question is; If a user understands the logic and modifies the rsync command, he can easily... (0 Replies)
Discussion started by: cemo
0 Replies

8. Shell Programming and Scripting

Allow FTP user to access multiple directories

Hi Experts, I am in urgent need of your suggestions. I have below two users in my system: xyz:x:101:101:XYZ System Account:/export/home/xyz:/bin/bash abc:x:2009:10:ftp user only:/export/home/abc:/bin/false Where "xyz" is the crucial one and "abc" is only introduced for FTPing the... (2 Replies)
Discussion started by: sugarcane
2 Replies

9. UNIX for Dummies Questions & Answers

Restrict access

I'm trying to use squid to restrict elinks' access to certain websites(only http traffic). I have tried some configs in squid.conf but no luck. Hope someone has a bit of time to explain me how can you make these config's :) ---------- Post updated at 05:40 PM ---------- Previous update was at... (1 Reply)
Discussion started by: Birnbacher
1 Replies

10. Shell Programming and Scripting

Generate list of directories that a user has access to

I manage an AIX OS 7.1 system on IBM Power 770. I want to find out which directories/folders a particular user has read/write access to. How can I cleanly create a list of all directories on the system that a user has access to.. Does this make sense? Thanks in Advance, NEWB:rolleyes: (3 Replies)
Discussion started by: code911
3 Replies

LEARN ABOUT FREEBSD

ftpchroot

FTPCHROOT(5)						      BSD File Formats Manual						      FTPCHROOT(5)

NAME

     ftpchroot -- list users and groups subject to FTP access restrictions

DESCRIPTION

     The file ftpchroot is read by ftpd(8) at the beginning of an FTP session, after having authenticated the user.  Each line in ftpchroot corre-
     sponds to a user or group.  If a line in ftpchroot matches the current user or a group he is a member of, access restrictions will be applied
     to this session by changing its root directory with chroot(2) to that specified on the line or to the user's login directory.

     The order of records in ftpchroot is important because the first match will be used.  Fields on each line are separated by tabs or spaces.

     The first field specifies a user or group name.  If it is prefixed by an ``at'' sign, '@', it specifies a group name; the line will match
     each user who is a member of this group.  As a special case, a single '@' in this field will match any user.  A username is specified other-
     wise.

     The optional second field describes the directory for the user or each member of the group to be locked up in using chroot(2).  Be it omit-
     ted, the user's login directory will be used.  If it is not an absolute pathname, then it will be relative to the user's login directory.	If
     it contains the /./ separator, ftpd(8) will treat its left-hand side as the name of the directory to do chroot(2) to, and its right-hand side
     to change the current directory to afterwards.

FILES

     /etc/ftpchroot

EXAMPLES

     These lines in ftpchroot will lock up the user ``webuser'' and each member of the group ``hostee'' in their respective login directories:

	   webuser
	   @hostee

     And this line will tell ftpd(8) to lock up the user ``joe'' in /var/spool/ftp and then to change the current directory to /joe, which is rel-
     ative to the session's new root:

	   joe	/var/spool/ftp/./joe

     And finally the following line will lock up every user connecting through FTP in his respective ~/public_html, thus lowering possible impact
     on the system from intrinsic insecurity of FTP:

	   @	public_html

SEE ALSO

     chroot(2), group(5), passwd(5), ftpd(8)

BSD
								 January 26, 2003							       BSD
All times are GMT -4. The time now is 01:39 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy