LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 09-16-2004, 10:36 PM   #1
coloradopaul
LQ Newbie
 
Registered: Apr 2004
Posts: 1

Rep: Reputation: 0
Need to chroot bash users to thier home directory


I've searched and searched and this seems like such a common need - so many people looking for a solution and no good answer.

I want to let users log in to a shell account, but I don't want them to be able to move out of their home directory.

I've tried jailkit and makejail, to no great success. I am running fedora core 2.

If I have users tom, dick, and harry and their home directories are:

/home/tom
/home/dick
/home/harry

I would prefer to be able to keep tom from making it out of his directory, dick from his, harry from his.

I am willing to give them all access to /home as their root. I would prefer NOT having to move all the sbin binaries to their directories so they can run things.... I just don't want them to browse the system. I feel like if I use this method I will leave something out that is needed or create another hole.

If this is a complete impossibility - is there a good way to create a "machine within a machine" where users *could* login and have access to an entire filesystem that runs seemingly independent of the main system?

thanks in advance, I've been fighting with this for days.

-Paul

Last edited by coloradopaul; 09-16-2004 at 10:37 PM.
 
Old 09-16-2004, 10:51 PM   #2
Capt_Caveman
Senior Member
 
Registered: Mar 2003
Distribution: Fedora
Posts: 3,658

Rep: Reputation: 57
Have you tried the Jail Chroot Project. It has a utility that automagically copies over any needed bins and libs for most standard user utils, though you still have to copy over any additional special software with the addjailsw utility. It's fairly easiy to setup and configure as well.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Users can only see home directory bluenix Linux - General 20 03-12-2005 08:51 AM
chroot or keeping users to /home techrolla Linux - Security 9 06-22-2004 05:18 AM
how would i safely lock users to thier home dir? f1uke Linux - Security 2 07-22-2003 01:23 AM
vsftpd home directory and chroot avante Linux - Networking 4 03-17-2003 01:56 AM
Chroot (FTP,Home Directory) Thanewbie Linux - Security 2 05-14-2001 02:49 AM


All times are GMT -5. The time now is 04:04 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration