Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: nix User Access Restrictions to Network, USB ports, PCMCIA, CDROM
Operating Systems Linux nix User Access Restrictions to Network, USB ports, PCMCIA, CDROM Post 302519960 by Corona688 on Thursday 5th of May 2011 01:12:50 PM
Old 05-05-2011
Quote:
Originally Posted by netfreighter
How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?
Don't give it any USB, CDROM, Firewire, or ethernet drivers and it won't have any USB, CDROM, Firewire, or ethernet devices.

How to do this depends on the distro. There's a few options. If these things are all modules, you can blacklist the relevant modules and they won't be able to get these modules loaded without first logging in as root. If you're compiling your own kernel you can just leave these options out entirely.

Of course, none of this prevents them just popping in a livecd and booting with that. They could do that on a mac too.

For that matter, nothing prevents them taking photographs of the screen, either.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

USB Ports

I want to map out specific USB ports. For example if there are 7 ports on a USB hub I want to be able to identify port #2 and send a file there. How does UNIX see these ports? (1 Reply)
Discussion started by: eggfoot
1 Replies

2. Solaris

Non-root user access to privileged ports-Solaris 8

Please let me know how to setup a non-root user to be able to access a privileged port (<1024) on Solaris 8. I am currently running tomcat as "tomcat" user and I get the following error during to start up: SEVERE: Error initializing endpoint java.net.BindException: Permission denied<null>:443 (5 Replies)
Discussion started by: pingmeback
5 Replies

3. Red Hat

RHEL4&5 Automount for USB/CDROM/DVDROM

Hi Guys, as above, how do I enable automount for USB/CDROM/DVDROM in RHEL4 & 5? I have searched the forum on this topic but didn't find any. Also searched the net but it seems confusing and there are different ways to do things depending on the distros. Btw, I am on RHEL command line only... (4 Replies)
Discussion started by: DrivesMeCrazy
4 Replies

4. Linux

How to install linux in a system without cdrom, usb boot, floppy, other OS?

Hello to everyone, I am new to linux and I want to move to this system after bad experiences with windows. I have also a particular problem. An old laptop is probably able to handle just linux at this point of its life. The cdrom is gone, the bios doesn't have usb boot support, there is no... (6 Replies)
Discussion started by: highkftj
6 Replies

5. Solaris

Adding user with restrictions (Closed Homework)

Hello, I would to create a new user with some restriction: Example "Toto" I am a newer in unix please tell me how to do 1. The user will will have only remote access via FTP ( not telnet, ssh etc ...) 2. The user will not be able to access via FTP to other directory 4) He will access only... (1 Reply)
Discussion started by: fedeboubou
1 Replies

6. Shell Programming and Scripting

User restrictions

Hi, I am setting up a new Suse server and I'm very happy with it :). So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (0 Replies)
Discussion started by: kever
0 Replies

7. UNIX for Dummies Questions & Answers

User restrictions

Hi, I am setting up a new Suse server and I'm very happy with it . So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (1 Reply)
Discussion started by: kever
1 Replies

8. UNIX for Advanced & Expert Users

How to uniquely distinguish between two USB ports??

Hi all, I am facing a problem while writing a shell script. My machine has two USB ports- left port and right port. whenever I connect USBS to both the ports, entry is generated as /sys/block/sdc and /sys/block/sdd and I mount the USBs to a particular directory. But I need to know... (3 Replies)
Discussion started by: Pkumar Sachin
3 Replies

9. Shell Programming and Scripting

Admin user command usage restrictions

Hi, I need to work on restricting the Linux commands to the ADMIN user to some extent. It means for example, Admin users should not use passwd command to change the password of "root" or other important accounts like oracle, etc., So, I want to know which commands should be restricted upto which... (5 Replies)
Discussion started by: Dpu
5 Replies

10. UNIX for Advanced & Expert Users

How to provide root access via sudo with restrictions?

Hi, I have a requirement to provide root access but user should not run some specific commands, How it is possible. following is my configuration at sudoers file, Cmnd_Alias MYLIMIT = /usr/bin/passwd /sbin/shutdown /usr/bin/reboot /usr/sbin/visudo /bin/vi /usr/bin/vim test2... (5 Replies)
Discussion started by: anuragr
5 Replies

LEARN ABOUT DEBIAN

twinstar

TWINSTAR(8)						User Contributed Perl Documentation					       TWINSTAR(8)

NAME

       twinstar - Control the Twinstar feature of a Xorcom Astribank

SYNOPSIS

       twinstar {status|jump|enable-wd|disable-wd|ports}

DESCRIPTION

       twinstar is a tool to control the Twinstar (dual USB port) of a Xorcom Astribank. There is a single and mandatory argument which is the
       command to run. That command operates on all the Astribanks connected to the system.

       Technically all the commands are implemented using Dahdi::Xpp::Mpp which in turn uses astribank_tool. Thus using thus tool will require
       root permissions or otherwise read/write permissions to the USB device.

       The twinstar may be in watchdog mode, which means that it will jump to the remote host if it loses contact with the local host. This can
       happen if the machine is powered down or hangs or even if the xpp drivers are unloaded. Which is why the standard twinstar scripts put the
       Astribanks in twinstar mode on startup and remove it on normal shutdown.

       An Astribank will only jump to the other host (either if asked explicitly or by the watchdog) only if there is a different Astribank
       connected to the other port and running. Which is why all of this has no effect on systems that don't need this functionality.

       The command are:

   status
       Shows the current status of all Astribanks. Note that it only shows Astribanks whose current active USB port is the one connected to this
       computer.

       Example output:

	DEVICE		PORT	   WATCHDOG	   POWER0     POWER1
	usb:001/010	0	   on		   yes	      yes
	usb:001/011	0	   on		   yes	      yes

       For each Astribank on the system that has Twinstar support we get:

       Device
	   The address of the device. This is the bus address, e.g. the address you see in lsusb / dahdi_hardware.

       Port
	   The active USB port on the Astribank. This should be always '0' on the master and always 1 on the slave.

       Watchdog
	   on if the watchdog is triggered in the Atribank or off otherwise.

       Power0, Power1
	   Shows which ports of this Astribank are connected to a USB port of a running computer. This only shows whether or not the USB host
	   provides power.

   ports
       Shows the same 'Port' column of the status command.

   jump
       Command all the Astribanks to jump to the other port. This works regardless the watchdog mode is enabled or not. But requires that there is
       power on the other port.

   enable-wd
       Enables watchdog mode.

   disable-wd
       Disables watchdog mode.

FILES

       twinstar mostly uses astribank_tool which in turn mostly uses USB files under /dev/bus/usb .

perl v5.14.2							    2010-07-28							       TWINSTAR(8)
All times are GMT -4. The time now is 10:45 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy