LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices



Reply
 
Search this Thread
Old 03-22-2006, 02:27 AM   #1
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Rep: Reputation: 15
Deny user access to terminal/directory browsing


I have a user who I don't want to have access to a terminal session through SSH. However, I do want them to be able to log in and browse their home directory to edit web pages (note, their home directory is in /var/www/html/users_webpage). This particular user is using Macromedia contribute 3 with sftp (or vsftpd on my end).

I tried adding: DenyUsers <username> to the sshd_config file, however, then the user is unable to access vsftpd services.

I thought CHROOT would be an option, but I see that you can restrict the user's browsing access by adding a chroot_list to vsftpd.conf.

So I guess what I'm asking is, short of chroot SSH, is there anyway to either:

a) keep the user locked inside that directory
b) disable terminal access through SSH without interrupting vsftp services
 
Old 03-22-2006, 02:37 AM   #2
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Original Poster
Rep: Reputation: 15
I found that you could do the following to deny terminals. From a prompt as a root:

usermod -s /bin/false <username_here>

This seems to work perfectly. If anyone else has any ideas how else to limit it, I'd love to hear 'em.
 
Old 03-22-2006, 01:04 PM   #3
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Original Poster
Rep: Reputation: 15
..not so perfect...logging in this morning I see the user is now denied any access
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Allowing user access to one directory only aje Slackware 5 05-25-2005 09:12 PM
how to deny user to use ftp to access system ust Linux - Software 4 05-23-2005 09:39 PM
can not access directory from user account - only root walterbyrd Linux - General 1 03-05-2005 12:23 AM
Directory access denied to root user: inode hack? netmar Linux - Security 2 07-31-2004 05:53 AM
How to assign directory access to a user linuxfans Linux - General 7 04-16-2003 01:06 PM


All times are GMT -5. The time now is 12:22 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration