04-15-2008
this will introduce to chroot jail
this might be useful as well
10 More Discussions You Might Find Interesting
1. HP-UX
Hi,
Please any one can help me to know that how we can restrict a user group to access the kernel at all. (0 Replies)
Discussion started by: harishankar
0 Replies
2. UNIX for Advanced & Expert Users
Hi All,
It will be very great if you can help me in this issue. Thanks in advance.
I need to enable FTP on a solaris9 server. I need to create a new user some "xxxxxx" and he can only FTP the files to and from between /tftpboot directory and network devices. Other users should not... (8 Replies)
Discussion started by: santhoshkumar_d
8 Replies
3. UNIX for Dummies Questions & Answers
Hi!
i'm using FreeBSD 6.2 and hosting my pc to frens
in particular of sensitive information being saved to the PC, i would like to know is it possible for me to restrict user access to their /home dir. only?
and also, i wanted to restrict them listing files under /etc
thanks all! (10 Replies)
Discussion started by: rdns
10 Replies
4. UNIX for Advanced & Expert Users
Hi
I have requirement to create 3 new users on my server but to restrict their access to a set of particular folders.
/export/home/kapil/shared,
/export/home/kapil/shared/Folder1
/export/home/kapil/shared/Folder2
These folders should be accessible to all the 3 users and to me too.... (1 Reply)
Discussion started by: kapilk
1 Replies
5. UNIX for Dummies Questions & Answers
Hi All,
How can we restrict a particular user access to a particular shell in solaris 10.
Thanks in Advance. (5 Replies)
Discussion started by: rama krishna
5 Replies
6. Red Hat
Hi there
I have an application user on my system that wants accesses to these file systems as such:
rwx:
/SAPO
/SAPS12
/R3_888
/R3_888B
/R3_888F
/R3_888R
r:
/usr/sap
these are the existing FS permissions:ownerships:
# ls -ld /SAPO (9 Replies)
Discussion started by: hedkandi
9 Replies
7. UNIX for Dummies Questions & Answers
Hi,
I'm using rsync on cygwin (winXP) to sync our files between several laptops and XP (acting as a file server)
For simplicity I use the same user account with different certificates over SSH.
Now my question is;
If a user understands the logic and modifies the rsync command, he can easily... (0 Replies)
Discussion started by: cemo
0 Replies
8. Shell Programming and Scripting
Hi Experts,
I am in urgent need of your suggestions.
I have below two users in my system:
xyz:x:101:101:XYZ System Account:/export/home/xyz:/bin/bash
abc:x:2009:10:ftp user only:/export/home/abc:/bin/false
Where "xyz" is the crucial one and "abc" is only introduced for FTPing the... (2 Replies)
Discussion started by: sugarcane
2 Replies
9. UNIX for Dummies Questions & Answers
I'm trying to use squid to restrict elinks' access to certain websites(only http traffic).
I have tried some configs in squid.conf but no luck. Hope someone has a bit of time to explain me how can you make these config's :)
---------- Post updated at 05:40 PM ---------- Previous update was at... (1 Reply)
Discussion started by: Birnbacher
1 Replies
10. Shell Programming and Scripting
I manage an AIX OS 7.1 system on IBM Power 770.
I want to find out which directories/folders a particular user has read/write access to. How can I cleanly create a list of all directories on the system that a user has access to.. Does this make sense?
Thanks in Advance, NEWB:rolleyes: (3 Replies)
Discussion started by: code911
3 Replies
LEARN ABOUT DEBIAN
cvsd-buildroot
cvsd-buildroot(8) System Manager's Manual cvsd-buildroot(8)
NAME
cvsd-buildroot - create a chrooted directory structure for use in cvsd.
SYNOPSIS
cvsd-buildroot DIRECTORY
DESCRIPTION
cvsd-buildroot creates and populates a directory that can be used as a chroot jail for running cvsd (see cvsd(8) ) in.
This script should be run as the root user since the creation of devices and the changing of ownership and permissions require this.
The script gives warnings about files that it's not expecting.
cvsd-buildroot creates the following directory structure:
/bin This directory is populated with the cvs binary that is found on the system.
/lib This directory is populated with all the libraries that are required for running programs in the /bin directory as well as some
predefined required libraries that are present on the system.
/dev Here null and zero devices are created.
/etc In this directory a passwd file is created that is used for matching user id's with usernames. The root and cvsd user are added to
this file if they're not there yet. The passwd file is checked for consistency with the system /etc/passwd to prevent mistakes.
The passwd file is also populated with users referenced in the repository directories. Note that no password data from /etc/passwd
or any other file is stored in the generated passwd file, all password entries are set to 'x'.
/usr Here symbolic links are placed to /bin and /lib for some common library and binary directories found on the system. This is done
for systems that have hard-coded paths for libraries.
/libexec and /usr/libexec
Symbolic links for these directories are created if they are present on the system.
/tmp This directory is cleaned out on systems that have tmpreaper.
After the directories are created and populated ownership and rights are set to a reasonable value (root:root,umask=022).
OPTIONS
cvsd-buildroot takes one argument, namely a directory in which the chroot jail will be created. The directory should be specified with an
absolute path.
NOTES
Creating a chroot environment is a terribly non-portable thing to do and therefore you may experience problems with missing libraries and
system files. For more information see the FAQ and the README. If you have to install libraries or perform actions not covered by
cvsd-buildroot please report your findings to <cvsd-users@lists.arthurdejong.org>.
Rerunning cvsd-buildroot after you have created your repository is advised since the repositories are checked for references to userid's
and lockfile directories.
SEE ALSO
cvsd(8)
README
FAQ
AUTHOR
Arthur de Jong <arthur@arthurdejong.org>.
Version 1.0.24 Jun 2012 cvsd-buildroot(8)