Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
was there any reason you decided against a more suitable title such as "Need help setting up a full webserver"? Capital letters and exclamatino marks won't get you help faster.
I recommend reading the docs at httpd.apache.org. Also, don't use telnet, use ssh which is the "secure alternative". SSH also allows you to do file copying securely (via scp and sftp).
i know how to setup apache , php and MYSQL no problem.
The main question i have is.
How to i add and cofigure a user so that he / she is only allowed in there own home dir (when they connect via ftp) and stop them getting remote access(Telnet / ssh)
Last edited by Gear_freak2000; 02-07-2004 at 12:28 PM.
you can stop individual remote connections by personalising the /etc/security/access.conf file. should have enough detail inside is already to explain everything.
chmod and chown will giver certain user/groups permissions/who owns what for teh folders and indivisual files ----(just be carful with thiese things, dont wont somone loging in and finding they can delet ur whole system now eh?)
In Mac, the CHMOD changes the permissions or CHOWN changes the owner/group of the file. The specific detailed changes to a users files/folders permissions are this: +w (can write) +r (can read) -you can make any file read only (important) and +x for executable. Obviously -(letter) to remove that permission. Almost forgot! NEVER be online as ROOT!
I dunno about MacOS, but in the linux world chmod changes the permissions and chown changes the owner/group of the file. Read the man page on both these commands.
There are two ways I have locked people out in the past.
First way was I took away read/write/execute lists for "others" on everything. I also changed the group association of everything in /bin, /usr, and /opt to localusers and make all the users that were allowed to run programs and browse system structure members of the localusers group. Users that weren't allowed weren't placed in that group.
I found that to be a pain because most programs when you use there install script set the permissions as root/root and mark binaries as executable for the world, so I had to change permissions constantly.
The second method, the method I employ now, is referred to as user jailing. I allow all my users ssh access to my machine. However, users that I want to keep out of places get chrooted to a directory on login. Inside there root directory they can browse the whole structure, and run the programs that exist there, but I have ultimate say over what goes in there. I only allow them the basic tools, don't allow them to install anything, and the only config. file they see in /etc is the passwd file with there password entry so they don't even know what other users are on the system or what software I am running. This takes some time to setup, but works quite well.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.