Board index Linux Security

Stop user seeing rest of filesystem

Stop user seeing rest of filesystem

Post by Nick » Tue, 03 Jul 2001 03:12:52



Hi,
How can I ensure that when a user logs in using ssh that he/she is unable to
see no higher than that users home dir ?
Can anyone recommend good reading on filesystem security.
TIA
Nick.
 
 
 
Top

Stop user seeing rest of filesystem

Post by Christian Garm » Tue, 03 Jul 2001 17:25:57



> How can I ensure that when a user logs in using ssh that he/she is unable to
> see no higher than that users home dir ?

man chroot

--
regards,


 
 
 
Top

Stop user seeing rest of filesystem

Post by topdo » Tue, 03 Jul 2001 20:29:25




> > How can I ensure that when a user logs in using ssh that he/she is unable to
> > see no higher than that users home dir ?

> man chroot

> --
> regards,


chroot is not really going to do what you want as if your users are sshing in
you will have to copy all apps and scripts and data that the users would need
inside the chrooted filesystem as nothing below the chroot will be accessable at
all

chroot  is good for ftp as there is generally a very limited number of actions
they can do and the data is in a single location.

if you don't want your users seeing configuration files you should be able to
manipulate the file permissions to not give away anything important

regards

Dav....

 
 
 
Top

Stop user seeing rest of filesystem

Post by Nick » Wed, 04 Jul 2001 07:05:16


Hi,
Ftp on SSH is all I require, so thanks, I guess I can do it without much
problem.
Thanks
Nick.




> > > How can I ensure that when a user logs in using ssh that he/she is
unable to
> > > see no higher than that users home dir ?

> > man chroot

> > --
> > regards,

> chroot is not really going to do what you want as if your users are sshing
in
> you will have to copy all apps and scripts and data that the users would
need
> inside the chrooted filesystem as nothing below the chroot will be
accessable at
> all

> chroot  is good for ftp as there is generally a very limited number of
actions
> they can do and the data is in a single location.

> if you don't want your users seeing configuration files you should be able
to
> manipulate the file permissions to not give away anything important

> regards

> Dav....

 
 
 
Top

1. Stop user seeing rest of filesystem

Hi,
How can I ensure that when a user logs in using ssh that he/she is unable to
see no higher than that users home dir ?
Can anyone recommend good reading on filesystem security.
TIA
Nick.

2. Apache ~User Problem

3. How do I stop users seeing password in ps -a

4. login and bootup...

5. stopping "cd .." ....list all our users directories, and STOPPING SPAM!!!

6. ISP. HELP.UNIX

7. Stopping users booting in single user mode (Was Re: What universities use Linux)

8. Question about "NGROUPS_MAX" setting in "/etc/system on Solaris 2.6

9. HELP!!! seeing Apache stop working is torturous!!!

10. HELP!!! seeing it stop working is torturous!!!

11. "korn" mail checker: suddenly stopped seeing new mail?

12. How can I stop CUPS from seeing printers on other computes on the LAN?

13. RH has stopped seeing devices?


All times are UTC
Board index