On Wed, Feb 02, 2000 at 10:25:23PM +0100, Rogier Maas wrote:
Dear List,
I have a couple of Shell-Account-users who can chdir to the root, and dir everything in my filesystem. Is there any way to confine them to their homedirectory like ProFTPd can?
Yes, but why bother... If they realy can 'dir' everything, you have a bigger problem: you have no security. If they can read and change /etc/passwd and /etc/shadow, you realy have a big problem. If they can read 'almost' all, as in the default SuSE configuration, you should be oke. It is posible to confine a user to his/her homedir (see: man (1) chroot), but then you should also make quite a lot binairies (like /bin/cp and /bin/ls) and libraries (like: /lib/...) available in their homedir. It almost never is worth the trouble. With ProFTPd (I guess a FTP-daemon), you users only have to ftp files and and have only a few simple needs: (cd, ls). A shell account users has a lot more needs (like shells, mail-readers, etc.). Take a look at chmod (see: man (1) chmod) and learn how to change the permissions on important files/directories. You should buy a Unix book and learn somethings about basic Unix security. Your question indicates that you lack a lot of simple SysAdmin skils. In a Dutch bookstore, you can find quite a few Linux-books in Dutch. Today, I counted more than 10 different books...
Thanks,
Rogier Maas
Cees. -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/Support/Doku/FAQ/