login folder

pyfsapple · 10-21-2003, 12:02 AM

Hi all

What should I do if I want to allow user to login (via ssh) but can only stay in his/her own folder?

Thanks
pyfsapple

jayjwa · 10-21-2003, 04:05 AM

What's a "login folder?"

pyfsapple · 10-21-2003, 04:50 AM

jayjwa

I meant "the default folder for each user", or say, home directory that stated in /etc/passwd

pyfsapple

XavierP · 10-21-2003, 06:53 AM

I would suppose that you'd need to create a username and password for the users on the target device - and only allow them normal user rights.

misophist · 10-21-2003, 08:59 AM

As I understand it, you could set up rights so a user would be restricted to /home/user, but their permissions would be the same no matter where they logged in from.

pyfsapple · 10-21-2003, 10:46 PM

Hi all

The problem is, any logged in user can use sth. like "cd /" to go to other directory ... AND as it is a web server, so people should have rx permission.

Thanks
pyfsapple

misophist · 10-21-2003, 11:15 PM

I just tried this. It's a real kludge, but it works. Create a group for minimum priveleged users (lusers? abusers?). Then remove 'other' permissions from every folder you want them kept out of. Awkward and stupid, but it's the best I can come up with. Why not just bar them from the server altogether if you can't trust them?