Isn't this what a chroot jail is meant for? I don't know too much about it, but Google produces many hits on "Linux FTP chroot jail" so maybe it's worth checking out. yep, i know. But that's only for ONE directory plus and everything below it. (if I'm correct)
I want users to be able to cd into /homes and below AND to some directories in /srv and all the other directories on the system should be "access denied". As I see it now, a regular user can cd into lot's of dirs, and even read lot's of files, just usually not _alter_ them. My filesystem is xfs, so it supports acl's. Is there a kind of DENY acl that I can put on all directories, other than these two? (so all users in that group would get access denied when trying to cd into other dirs than /home and /srv) All solutions I've read to far seem to do something of the kind, but not _exactly_ this. Perhaps it is simply impossible? Thanks very much for reading this post. mj