sudo account
hi guys,
is there a way i can restrict user from viewing the filesystem of linux box on member of sudo account? thanks |
Hi,
What do you mean by "viewing the filesystem" ?? do you want to restrict the users access only to theirs homes?? could you give more information about what you want to realize? |
Quote:
what is your linux distro ? best way would be to install a kiosk distro see some links here : https://secure.wikimedia.org/wikiped...i/Webconverger http://salahuddin66.blogspot.com/201...ian-kiosk.html http://kiosk.mozdev.org/ http://www.alandmoore.com/blog/2011/...-2011-edition/ http://superuser.com/questions/34556...h-boots-faster hope this helps... apoG |
sorry guys, the machine is running under rhel5.0. I'm looking to add config if possible on sudo to restrict certain user on viewing the root filesystem aside from his own home directory. Can i achieve this on sudo? Thanks
|
Users generally need to access things like libraries (stored in /usr/lib) and various configuration files stored in /etc to be able to do their work. Why, specifically, do you have a problem with users being able to see these things? They won't be able to modify anything outside of their $HOME (unless you have messed up the permissions). If it's really an issue, you could restrict users to a chroot jail. It all depends on how they're logging into the system (locally at the terminal? remotely?).
If you're paranoid about security, you might start by running an up to date, security patched distro. RHEL 5.0 is as old as the hills; the latest release of the 5.x series is 5.7, IIRC. Assuming you have a valid RHN subscription (and because you're running RHEL 5.0, you should), it should be pretty trivial to upgrade to the latest RHEL 5.x release, which contains numerous bug fixes and security fixes. Also, I don't get what sudo has to do with this. The sudo command grants root priviliges to authorized users, and root can do anything to the system. Ordinary users should definitely not be able to use sudo. |
......... may be it helps
|
Thanks for the advice btmiller.
got the idea and how am i going to do it. Thanks |
All times are GMT -5. The time now is 10:33 PM. |