Re: Lock user into one directory?

From: Armin Krawinkel (geschrei@gmx.at)
Date: 04/22/03

• Next message: William Hooper: "Re: Move 'Saved Sessions' from one machine (or login) to another?"
• Previous message: Sebastian Schack: "Lock user into one directory?"
• In reply to: Sebastian Schack: "Lock user into one directory?"
• Next in thread: Sebastian Schack: "Re: Lock user into one directory?"
• Reply: Sebastian Schack: "Re: Lock user into one directory?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: Armin Krawinkel <geschrei@gmx.at>
Date: Mon, 21 Apr 2003 22:00:34 GMT

Sebastian Schack announced in <b81od6$3da$1@ulric.tng.de>:

> Hi everybody.
>
> First of all: I'm pretty new to SSH so please excuse me if my
> question is a FAQ - but I didn't find anything that could really
> help me via google (maybe I searched with the wrong words?).
>
> I set up an SSH demon and an DNS entry. By now I'm able to ping my
> own computer through this DNS entry and I'm even able to establish
> an ssh connection from a friend's computer to mine.
>
> Since I'm running a small FTP server for my LAN at home I have
> several users created and they all have their own home directory as
> upload-folder for FTP.
>
> Now I want to lock some specific users into this home-directoy when
> they connect via SSH.
> By now every user is able to see everything on my HDD.
>
> I want something like this:
>
> $user@$computer: ssh mydns.homelinux.org
> $user@mydns.homelinux.org's password:
> $user@mycomputer:~> cd ..
> $user@mycomputer:~> SORRY, PERMISSION DENIED.
>
> So /some/ /specfic/ users should not be allowed to gain access to
> anything higher than their own home-directory.
>
> I think this should somehow be possible :)
>
> Thanks in advance,
>
> Sebastian
>

i think chroot is what you are searching for

-- 
life, the universe and everything

• Next message: William Hooper: "Re: Move 'Saved Sessions' from one machine (or login) to another?"
• Previous message: Sebastian Schack: "Lock user into one directory?"
• In reply to: Sebastian Schack: "Lock user into one directory?"
• Next in thread: Sebastian Schack: "Re: Lock user into one directory?"
• Reply: Sebastian Schack: "Re: Lock user into one directory?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Suse 10.2 - How secure from internet? ... I would steer clear of authenticated FTP because the passwords are plain ... Running an anonymous FTP server is ... I'd run SSH for everything else. ... for the attacker, that means as few public services as possible ... (alt.os.linux) RE: FTP Server ... David ... Subject: FTP Server ... > ssh will be fine. ... unsubscribe mailto:redhat-list-request@redhat.com?subject=unsubscribe ... (RedHat) Re: Intruders good job -- Change my root password ... >> Which unnecessary services do I have to disable? ... > ssh is secure, modulo a few recently discovered bugs. ... To run a ftp server is only for my convenience. ... Do you want anyone on the Internet to be ... (comp.os.linux.security) Re: split then email all parts? ... Essential files, backup, split, email, and ISP all in the same thought ... or to which you can make an SSH or Telnet connection? ... If ftp then send the files whole to the ftp server with a cron script. ... (comp.os.linux.misc) Re: Best Solution for Transfering Files ... I thought maybe set up an FTP server at home and transfer the files ... If you manage to set up an ssh server locally, ... unison and unison-gtk also are tools ... "One dreaming alone, it will be only a dream; ... (Ubuntu)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint