05-05-2011
Quote:
Originally Posted by
netfreighter
How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?
Don't give it any USB, CDROM, Firewire, or ethernet drivers and it won't have any USB, CDROM, Firewire, or ethernet devices.
How to do this depends on the distro. There's a few options. If these things are all modules, you can blacklist the relevant modules and they won't be able to get these modules loaded without first logging in as root. If you're compiling your own kernel you can just leave these options out entirely.
Of course, none of this prevents them just popping in a livecd and booting with that. They could do that on a mac too.
For that matter, nothing prevents them taking photographs of the screen, either.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I want to map out specific USB ports. For example if there are 7 ports on a USB hub I want to be able to identify port #2 and send a file there. How does UNIX see these ports? (1 Reply)
Discussion started by: eggfoot
1 Replies
2. Solaris
Please let me know how to setup a non-root user to be able to access a privileged port (<1024) on Solaris 8. I am currently running tomcat as "tomcat" user and I get the following error during to start up:
SEVERE: Error initializing endpoint
java.net.BindException: Permission denied<null>:443 (5 Replies)
Discussion started by: pingmeback
5 Replies
3. Red Hat
Hi Guys,
as above, how do I enable automount for USB/CDROM/DVDROM in RHEL4 & 5?
I have searched the forum on this topic but didn't find any.
Also searched the net but it seems confusing and there are different ways to do things depending on the distros.
Btw, I am on RHEL command line only... (4 Replies)
Discussion started by: DrivesMeCrazy
4 Replies
4. Linux
Hello to everyone,
I am new to linux and I want to move to this system after bad experiences with windows.
I have also a particular problem. An old laptop is probably able to handle just linux at this point of its life.
The cdrom is gone, the bios doesn't have usb boot support, there is no... (6 Replies)
Discussion started by: highkftj
6 Replies
5. Solaris
Hello,
I would to create a new user with some restriction: Example "Toto"
I am a newer in unix please tell me how to do
1. The user will will have only remote access via FTP ( not telnet, ssh etc ...)
2. The user will not be able to access via FTP to other directory
4) He will access only... (1 Reply)
Discussion started by: fedeboubou
1 Replies
6. Shell Programming and Scripting
Hi,
I am setting up a new Suse server and I'm very happy with it :). So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (0 Replies)
Discussion started by: kever
0 Replies
7. UNIX for Dummies Questions & Answers
Hi,
I am setting up a new Suse server and I'm very happy with it . So far Apache2, SVN, PHP5 and MySQL are up and running. Now I want to create and delete users (for coders for our projects) but they aren't allowed to do anything so there must be some restrictions. I want access restriction so... (1 Reply)
Discussion started by: kever
1 Replies
8. UNIX for Advanced & Expert Users
Hi all,
I am facing a problem while writing a shell script.
My machine has two USB ports- left port and right port.
whenever I connect USBS to both the ports, entry is generated as /sys/block/sdc and /sys/block/sdd and I mount the USBs to a particular directory.
But I need to know... (3 Replies)
Discussion started by: Pkumar Sachin
3 Replies
9. Shell Programming and Scripting
Hi,
I need to work on restricting the Linux commands to the ADMIN user to some extent. It means for example, Admin users should not use passwd command to change the password of "root" or other important accounts like oracle, etc.,
So, I want to know which commands should be restricted upto which... (5 Replies)
Discussion started by: Dpu
5 Replies
10. UNIX for Advanced & Expert Users
Hi,
I have a requirement to provide root access but user should not run some specific commands, How it is possible.
following is my configuration at sudoers file,
Cmnd_Alias MYLIMIT = /usr/bin/passwd /sbin/shutdown /usr/bin/reboot /usr/sbin/visudo /bin/vi /usr/bin/vim
test2... (5 Replies)
Discussion started by: anuragr
5 Replies
LEARN ABOUT REDHAT
dummy_cs
DUMMY_CS(4) Kernel Interfaces Manual DUMMY_CS(4)
NAME
dummy_cs - PCMCIA dummy device driver
SYNOPSIS
insmod dummy_cs.o [pc_debug=n] [free_ports=n] [irq_list=i,j,...]
DESCRIPTION
The dummy_cs module has two purposes. It is intended as a demonstration of how to write the PCMCIA interface code for a client driver, and
the source code is heavily commented. It is also written to function as a sort of generic ``point enabler'': when bound to any PCMCIA IO
card, it will read the card's Configuration Information Structure, and configure the card appropriately. The configuration includes set-
ting up IO and memory windows, configuring the card for interrupts, and initializing the card's PCMCIA configuration registers.
It turns out that many cards report incomplete or inaccurate configuration information, due to vendor carelessness and the complexity of
the data format. A vendor driver can generally take for granted many configuration details, so there is not much incentive for vendors to
ensure that the on-card information is complete. Thus, the dummy_cs module is limited by its generality: since it makes no assumptions
about card types, it is forced to rely on the card information, for better or worse.
PARAMETERS
pc_debug=n
Selects the PCMCIA debugging level. This parameter is only available if the module is compiled with debugging enabled. A non-zero
value enables debugging.
free_ports=n
A flag indicating if the IO ports allocated for the card should be freed from the kernel resource maps. This is useful if the dummy
driver is being used to configure a card in preparation for loading a specific PCMCIA-unaware driver. The default is 0 (false).
irq_list=i,j,...
Specifies the set of interrupts that may be allocated by this driver.
AUTHOR
David Hinds - dahinds@users.sourceforge.net
SEE ALSO
cardmgr(8), pcmcia(5).
pcmcia-cs 2000/06/12 21:24:47 DUMMY_CS(4)