[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] restricting shell accts?

Subject: Re: [cobalt-users] restricting shell accts?
From: Jeff Lasman <jblists@xxxxxxxxxxxxx>
Date: Sun May 21 20:35:55 2000
Organization: nobaloney.net

While it IS possible to restrict users shell access, it's not simple. 
It's done through a lot of careful attention to detail in setting up
permissions AND by using a shell that's been written to work in a
chrooted environment.  You also need all important files for running the
system duplicated for EACH user with a shell account.

There are ways to do it, and they ARE documented all over the Internet. 
I've never tried this, and I have no idea if they interfere with the
Cobalt's gui or not, but I presume they wood.

We're thinking seriously of offering shell accounts; if/when we do, we
will use a chrooted shell environment.  But on a "straight" linux box,
NOT on a RaQ.

Jeff

Power Host wrote:
> 
> i am sure someone has found a way to do this, i cannot. we are using a raq3
> and want to restrict shell accts that users have to their
> /home/sites/www.domain.com directory... i dont want anyone snooping around,
> mainly because the users dont need to know what other sites are the server.
-- 
Jeff Lasman <jblists@xxxxxxxxxxxxx>
nobaloney.net
P. O. Box 52672
Riverside, CA  92517
voice: (909) 787-8589  *  fax: (909) 782-0205

Follow-Ups:
- Re: [cobalt-users] restricting shell accts?
  - From: Mat Kovach

References:
- [cobalt-users] restricting shell accts?
  - From: Power Host

Prev by Date: Re: [cobalt-users] Majordomo is stubborn: resets to 'closed'
Next by Date: Re: [cobalt-users] Cron Error
Previous by thread: [cobalt-users] restricting shell accts?
Next by thread: Re: [cobalt-users] restricting shell accts?

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index