Subject: Re: One more time
From: Stephen Lewis (lewis@napanet.net)
Date: Thu Jan 04 2001 - 21:44:39 MST
It is not clear why you are trying to restrict this user.
Normally permissions are used to control what a user can see and what
a user can execute. If he has permission he can "browse".
So the best thing to do is create a group for this user
(which Yellowdog adduser does by default) and unless the
permission bits for a file include 'world' or this users
'group' he will not be able to see/execute a file.
Normally directories in '/' have the execute bits set
for 'world' access but it need not be so. Try turning
off the bits for any directory you don't want this user to see
e.g as root
cd /
chmod 750 usr
Now an ordinary user will not see *anything* that begins
'/usr' - is that what you need? If the user does 'cd /usr'
it won't actually "go back to their directory" it will simply
say "Permission Denied" and remain where it is. If you need more
than one user like this then you create a 'group' for users who
*are* allowed in /usr and change the group of /usr
chgrp mygroup usr
read 'man chmod' carefully and use 'ls -l' to see permissions,
read 'man group', 'man groups' and look in '/etc/group'
Stephen Lewis
> Subject:
> One more time
> Date:
> Thu, 04 Jan 2001 19:19:51 -0800
> From:
> Matthew Hill <happytwo@milepost1.com>
> Reply-To:
> yellowdog-general@lists.yellowdoglinux.com
> To:
> Yellow Dog List <yellowdog-general@lists.yellowdoglinux.com>
>
>
>
> I thought i would ask one more time. See if i could get an answer.
>
> How would i keep a user in thier directory using telnet? I would like to keep
> them from be able to browse other directorys. So when they cd / it would go
> back to there home directory instead of the real root directory.
>
> If there is a web site someone could point me to or if someone knows how to do
> this that would be a big help.
> Thanks
> Matthew
This archive was generated by hypermail 2a24 : Thu Jan 04 2001 - 22:00:43 MST