|
Home > Archive > Red Hat Security > March 2004 > chrooting users to their homes
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
chrooting users to their homes
|
|
| localhost 2004-03-27, 2:13 pm |
| Hi ,
i want to offer ssh or telnet access ,but with these acesses users can view my server's folders ,how to choroot users to their homes as i do with proftpd.
thanks
ahh forgot
how to deny a user so he can't execute some commands like 'tar' 'make' and others ... | |
| Alexander Dalloz 2004-03-27, 4:36 pm |
| On Sat, 27 Mar 2004 14:13:34 -0600 localhost wrote:
>
> Hi ,
> i want to offer ssh or telnet access ,but with these acesses users can
> view my server's folders ,how to choroot users to their homes as i do
> with proftpd.
> thanks
>
> ahh forgot
> how to deny a user so he can't execute some commands like 'tar' 'make'
> and others ...
You must create chrooted environments for each user. It is not that easy.
There are some howtos around to be found using google. But be aware that
you can break out with enough skill. For a true chroot you need kernel
enhancements like grsecurity or SELinux.
Alexander
--
Alexander Dalloz | Enger, Germany
PGP key valid: made 13.07.1999
PGP fingerprint: 2307 88FD 2D41 038E 7416 14CD E197 6E88 ED69 5653
| |
| localhost 2004-03-28, 1:38 pm |
| I did some security issues like chmoding my binaries so no one can execute them ,but still on the chrooting... |
|
|
|
|