LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page Deny user access to terminal/directory browsing
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
LinkBack Search this Thread
Old 03-22-2006, 01:27 AM   #1
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Rep: Reputation: 15
Deny user access to terminal/directory browsing

I have a user who I don't want to have access to a terminal session through SSH. However, I do want them to be able to log in and browse their home directory to edit web pages (note, their home directory is in /var/www/html/users_webpage). This particular user is using Macromedia contribute 3 with sftp (or vsftpd on my end).

I tried adding: DenyUsers <username> to the sshd_config file, however, then the user is unable to access vsftpd services.

I thought CHROOT would be an option, but I see that you can restrict the user's browsing access by adding a chroot_list to vsftpd.conf.

So I guess what I'm asking is, short of chroot SSH, is there anyway to either:

a) keep the user locked inside that directory
b) disable terminal access through SSH without interrupting vsftp services
 
Old 03-22-2006, 01:37 AM   #2
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Original Poster
Rep: Reputation: 15
I found that you could do the following to deny terminals. From a prompt as a root:

usermod -s /bin/false <username_here>

This seems to work perfectly. If anyone else has any ideas how else to limit it, I'd love to hear 'em.
 
Old 03-22-2006, 12:04 PM   #3
intranet_man
LQ Newbie
 
Registered: Dec 2004
Distribution: RHEL 3/4, Fedora 3, dynebolic, Knoppix
Posts: 22

Original Poster
Rep: Reputation: 15
..not so perfect...logging in this morning I see the user is now denied any access
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Allowing user access to one directory only aje Slackware 5 05-25-2005 08:12 PM
how to deny user to use ftp to access system ust Linux - Software 4 05-23-2005 08:39 PM
can not access directory from user account - only root walterbyrd Linux - General 1 03-04-2005 11:23 PM
Directory access denied to root user: inode hack? netmar Linux - Security 2 07-31-2004 04:53 AM
How to assign directory access to a user linuxfans Linux - General 7 04-16-2003 12:06 PM


All times are GMT -5. The time now is 05:15 AM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
 
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration