SSH - prevent roaming around the server


 
Thread Tools Search this Thread
Special Forums Cybersecurity SSH - prevent roaming around the server
# 1  
Old 03-01-2006
SSH - prevent roaming around the server

Hi,

We have a user who needs to connect to us over the internet using an ssh client. We use HP-UX 11.00.

We set up a home directory with login and password for them. We would not want to give them full roaming access for the server ie, they should not be able to cd up the directory tree.

We have found that if they connect with ftp, they do not have roaming access. However, if they connect with ssh/sftp, they do have full roaming access.

Can anyone tell me how to stop them cd'ing out of their home directory up the directory tree when using ssh/sftp?

Many thanks
Helen Smilie
# 2  
Old 03-02-2006
Sounds like you should set their login shell to rksh.
# 3  
Old 03-03-2006
Sure babOOshka Smilie ,
Though i think u know the answer Smilie i'm gonna post another one for others, You should use the ssh with chroot support here's the link link
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. AIX

How to ssh from an AIX OS server to a Fabric OS server without password?

Hi I'd like to ssh from an AIX OS server ( v5.3) to a Fabric OS server ( v6.1.2 ) without password. I tried using dsa or rsa keys but it didn't work, the aix server still asked for the password. Somebody help, please :(:(:( (8 Replies)
Discussion started by: bobochacha29
8 Replies

2. Shell Programming and Scripting

Multi server access through remote server using ssh

Team, Presently I have 5 ip address kept in ip_abc1 file, for each of the ip address listed, i need to login on each ipaddress one at a time and login as below for that specific ip address ssh -p 8101 karaf@<ip.address_for the specific ip address as logged in> password features:list... (4 Replies)
Discussion started by: whizkidash
4 Replies

3. Shell Programming and Scripting

Ssh to get files from server A and zip in server B

Hi, I have read & write access in Unix box A and read access in Unix box B. I want a folder to be zipped from box B and sftp-ed in box A. Is there a remote scripting to achieve this? (2 Replies)
Discussion started by: Prasannag87
2 Replies

4. Shell Programming and Scripting

Connect (SSH) to Windows server via Linux server through a script and passing command.. but failing

I am trying to connect to Windows server via Linux server through a script and run two commands " cd and ls " But its giving me error saying " could not start the program" followed by the command name i specify e g : "cd" i am trying in this manner " ssh username@servername "cd... (5 Replies)
Discussion started by: sunil seelam
5 Replies

5. Shell Programming and Scripting

prevent ssh from executing result in shell

Hi, I am writing a script on Solaris 10 and want to execute a remote ssh command. Normally this command should just return the value 0000000000002356 but when using ssh it seems it is passing the result to the shell to execute. ssh root@10.5.112.145 `/usr/bin/nawk -F\, '$1=="USG" && $2=="01"... (3 Replies)
Discussion started by: borderblaster
3 Replies

6. Shell Programming and Scripting

Using ssh to add register key on ssh server

Hi, I want to use ssh to add a register key on remote ssh server. Since there are space characters in my register key string, it always failed. If there is no space characters in the string, it worked fine. The following is what I have tried. It seems that "ssh" command doesn't care about double... (9 Replies)
Discussion started by: leaftree
9 Replies

7. UNIX for Dummies Questions & Answers

Force user to use ssh/prevent telnet access

I have just set up a user on our system HP-Thru64. The user needs to be able to su to root after they login and this works fine. Users cannot login from root externally so you have to first connect as a user and then su. I am wondering is it possible for me to prevent the user from having telnet... (4 Replies)
Discussion started by: peragin
4 Replies

8. UNIX for Advanced & Expert Users

How to allow roaming client to send mails via its mail server

Hi folks OS- Debian Etch Xen postfix courier perdition perdition-mysql MySQL Single public IP Dom0 - Debian Etch workstation Server-1, domU1 for routing with perdition and perdition-mysql installed Server-2, domU2, mail server for domain-A Server-3, domU3, mail server for... (2 Replies)
Discussion started by: satimis
2 Replies

9. Cybersecurity

What's the difference between an SSH Client and an SSH Server?

Eh... yeah. What the title says. :D (1 Reply)
Discussion started by: PSC
1 Replies
Login or Register to Ask a Question