Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

Protecting a folder/directory against root access.

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers Protecting a folder/directory against root access.
# 1  
Old 12-24-2009
Protecting a folder/directory against root access.
A friend and I run a vbulletin forum which recently got hacked. We believe what wound up happening was the attacker gained access to the VPS box and from there elevated their user accounts to admin status on our forums.

Obviously if someone gets into our box in the future it'll be a disaster so outside of sending backups to outside email/ftp servers are there any ways to secure a directory our backups reside in from a user who gains access to the system such that they're not recoverable or deletable?
# 2  
Old 12-24-2009
The obvious to me way to protect directories from root access is to put them on a separate NFS server and NFS mount them to the machine that needs to use them, on the NFS server you export them, with settings on /etc/exports(8) that denies root access to the NFS client, (see root squashing) which is the default behavior. I am not aware of any way of protecting a local filesystem from the root user. The backups stored in these NFS mounted directories would therefore need to be written to by a non-root user and of course could be unmounted when backs are not running to them.
 
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. SuSE

Auditors want more security with root to root access via ssh keys

I access over 100 SUSE SLES servers as root from my admin server, via ssh sessions using ssh keys, so I don't have to enter a password. My SUSE Admin server is setup in the following manner: 1) Remote root access is turned off in the sshd_config file. 2) I am the only user of this admin... (6 Replies)
Discussion started by: dvbell
6 Replies

2. Solaris

Probem is nfs folder access from root/users on another node

Hi all I am try NFS on node1 & node2 servers. On node1, when I am using # share -F nfs -o rw,anon=0 /abc On node2, when I am using # mount -f nfs node1:/abc /a in /a folder, root user is able to create files but any other user from node2 is not able to create files, please... (1 Reply)
Discussion started by: sb200
1 Replies

3. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

4. UNIX for Dummies Questions & Answers

Password protecting a directory

Hi, Is there a way to password protect a dir in linux ?? I need to protect the tmp folder of a JBoss server instance running on Linux RedHat os. I cannot change permissions cause, the root password is shared and a number of people login via that. also if possible can i restrict the root... (2 Replies)
Discussion started by: akshay61286
2 Replies

5. UNIX for Advanced & Expert Users

Protecting access to partition

I am trying to setup a computer where only the database can read/write to a partition. Basically, all other entities should fail. One thing I was thinking about was making the database own the partition itself (is this even possible?) but the problem is if someone can masquerade as the database... (4 Replies)
Discussion started by: Legend986
4 Replies

6. Solaris

running sshd server from home directory without root access

Hi, I managed to install openssh from source on my home directory on a server I don't have root access to. I had problems with privilege separation because of permissions initially so I disabled it in sshd_config. But when I run sshd from where I installed it by doing ~/local/sbin/sshd, nothing at... (0 Replies)
Discussion started by: sayeo
0 Replies

7. UNIX for Dummies Questions & Answers

Protecting the directory tree

Hello, I am hoping someone maybe able to help me. I have set up an Apache web server on my sun server with user accounts in the main htdocs directory. My question is how to stop these users searching up the directory tree when they ftp/telnet to the server. Also is it possible to restrict the... (2 Replies)
Discussion started by: rooneyl
2 Replies

8. UNIX for Dummies Questions & Answers

password protecting a directory

I need to password protect a particular file on one of my websites. Is it possible to password protect the entire directory? Or can I only password protect one file. How do I do this? Does it have to do with the .HTACCESS file on my unix server? Please Help! ~ :confused: ~ (2 Replies)
Discussion started by: iriemember
2 Replies

9. UNIX for Dummies Questions & Answers

Need help to access/mount so to access folder/files on a Remote System using Linux OS

Hi I need to access files from a specific folder of a Linux system from an another Linux System Remotely. I know how to, Export a folder on One SCO System & can access the same by using Import via., NFS in the Sco Unix SVR4 System using the scoadmin utility. Also, I know to use mount -t ... (2 Replies)
Discussion started by: S.Vishwanath
2 Replies
Login or Register to Ask a Question