LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 12-06-2007, 06:37 AM   #1
turbo_acura
Member
 
Registered: Sep 2004
Location: London, UK
Posts: 95

Rep: Reputation: 15
lock user to directory and service


hello!

In Redhat ES4, how do i create a user and lock him down to his home directory and only able to use the SSH service only?

Thanks!
Nigel
 
Old 12-06-2007, 09:08 AM   #2
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 679Reputation: 679Reputation: 679Reputation: 679Reputation: 679Reputation: 679
I think that either you need to put him in a jail, or use SE-Linux settings. However, he will need to be able to read directories like /bin/, /usr/bin/, /etc/, /lib/, /usr/lib etal to be able to run commands.
 
Old 12-06-2007, 09:26 AM   #3
turbo_acura
Member
 
Registered: Sep 2004
Location: London, UK
Posts: 95

Original Poster
Rep: Reputation: 15
i'm trying to avoid using SELinux as it has caused me problems in the past. The user just needs to use SSH, which i wouldn't think they need access to /bin and other directories..but not sure really...
 
Old 12-06-2007, 09:38 AM   #4
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 679Reputation: 679Reputation: 679Reputation: 679Reputation: 679Reputation: 679
SSH is a transport to run the shell, which is bash by default. You would need the same access if you used SSH as you would if you were logged in locally. Any command the person runs that needs to load a dynamic library will need access to that library and the directory that library is in. The /etc/ directory must be readable to be able to log in.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Unable to lock the administration directory (Ubuntu) Braynid Linux - Newbie 2 12-27-2010 11:46 PM
apache .htaccess and htpasswd - can't lock directory jordanthompson Linux - Software 9 02-08-2005 12:12 AM
Lock download directory in Mozilla + Mandrake 10 mhochman Linux - Software 0 05-18-2004 05:23 PM
VSFTPD - lock user to home directory ohleary Linux - Software 3 11-20-2003 03:04 PM
SSH lock users to the Home Directory jasonweb Linux - Security 2 04-11-2003 07:20 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 04:55 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration