LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 02-04-2005, 03:47 PM   #1
Terroth
Member
 
Registered: Mar 2004
Posts: 47

Rep: Reputation: 15
Usergroups and users.


Hey, im kind of new to linux, so go easy on me. =p

Anyways, im setting up a linux (MDK9.2 64Bit) gaming server, and ProFTPd is setup, but I need certian users to be chrooted, and not even see other peoples folders. But I have chroot on and they can see the other peoples home folders. As in one situation, I can get into the account 1, with account 2 and all other accounts, but not move or delete any files, but I can access account 2's home folder fine.

So bottom line, I need your help on that issue, and help with setting up user groups that can't do anything other then upload and delete files in one specific folder. Eg, /home/account 1/srcds/cstrike/maps. I want them to beable to access the maps folder and cfg folder ONLY, is that possible? But with those same lines, I can make the other stuff belong to root etc, but then can they launch the game server their selfs if the files belong to root?

Thanks!
 
Old 02-04-2005, 04:01 PM   #2
Optimistic
Member
 
Registered: Jun 2004
Location: Germany
Distribution: Debian (testing)
Posts: 276

Rep: Reputation: 33
Partial solution:

Make sure that the permissions of all the home directories ends in a 0 (e.g., 660). This will make it so that no one other than the owner or group can enter the directory. To prevent all but the owner, permissions should end with 00 (e.g., 600).

You will not be able to prevent the users from looking at the home directory (so far as I know) but you can prevent them from entering all but one of the folders (their own).
 
Old 02-04-2005, 04:29 PM   #3
Terroth
Member
 
Registered: Mar 2004
Posts: 47

Original Poster
Rep: Reputation: 15
Quote:
Originally posted by Optimistic
Partial solution:

Make sure that the permissions of all the home directories ends in a 0 (e.g., 660). This will make it so that no one other than the owner or group can enter the directory. To prevent all but the owner, permissions should end with 00 (e.g., 600).

You will not be able to prevent the users from looking at the home directory (so far as I know) but you can prevent them from entering all but one of the folders (their own).
That worked for one problem, but is there anyway I can chroot them to a folder inside theirs so they can't see the other customers? Or atleast hide the other customers?
 
Old 02-04-2005, 04:37 PM   #4
shengchieh
Member
 
Registered: Jul 2004
Location: Palo Alto, CA
Distribution: #! Korora
Posts: 472

Rep: Reputation: 30
If you know/learn about

chmod
chown
chgrp

you should be able to do everything. Get their man
pages (man chmod, ...) or see my website (listed below)
under "console commands").

Basically, you should be able to seperate people in different
groups. And the, give files/folders group permission. Then
only those in the same group can read (or write) those data.

Sheng-Chieh
 
Old 02-04-2005, 04:44 PM   #5
Terroth
Member
 
Registered: Mar 2004
Posts: 47

Original Poster
Rep: Reputation: 15
Thats great, but I have to hide the other users in the home dir when connecting through ftp.
 
Old 02-04-2005, 06:36 PM   #6
Terroth
Member
 
Registered: Mar 2004
Posts: 47

Original Poster
Rep: Reputation: 15
Someone? Anyone?
 
Old 02-04-2005, 08:12 PM   #7
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,290

Rep: Reputation: 378Reputation: 378Reputation: 378Reputation: 378
There's definitely a way to do it. In wu-ftpd you'd use the restricted-uid configuration setting in /etc/ftpaccess and there must be something similar for proftpd. I don't use it though, so you'll need to look at the documentation and figure out what the equivalent is. Maybe someone who knows proftpd can help.
 
Old 02-05-2005, 03:00 PM   #8
Terroth
Member
 
Registered: Mar 2004
Posts: 47

Original Poster
Rep: Reputation: 15
Well, can a ProFTPd pro help me out then?
 
Old 02-05-2005, 03:15 PM   #9
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,290

Rep: Reputation: 378Reputation: 378Reputation: 378Reputation: 378
Putting "proftpd chroot" into Google popped out this link which seems to be exactly what you're looking for.

Remember, Google is your friend.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
how to authenticate external users but bypass prompt on local LAN users? taiwf Linux - Security 5 07-13-2005 10:01 AM
A couple of questions about files and usergroups NonSumPisces Linux - Newbie 3 07-31-2004 08:31 AM
copying kde configuration for 2 users OR 2 users on 1 x session for vnc blackphiber Linux - General 0 02-26-2004 09:57 PM
what are the standard usergroups in linux vavoem Linux - Newbie 2 10-28-2003 05:15 PM
creating usergroups aymbpc Linux - Newbie 1 09-17-2003 04:00 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie

All times are GMT -5. The time now is 12:04 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration