- Community Home
- >
- Servers and Operating Systems
- >
- Legacy
- >
- Operating System - Tru64 Unix
- >
- query on user directory
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-24-2003 01:42 AM
тАО06-24-2003 01:42 AM
I wishes to prevent my users from reading other directories other than their own default users directory.
The users are still able to cd down to their own sub-directories.
Any advise?
Regards,
Ronny
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-24-2003 03:04 AM
тАО06-24-2003 03:04 AM
Re: query on user directory
man chroot
The restricted shell - Rsh can help as well.
(Beaware, rsh and Rsh - are diffrent things! I mean exactly Rsh)
man Rsh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-24-2003 06:09 AM
тАО06-24-2003 06:09 AM
Re: query on user directory
If you want to prevent a user of cd-ing from his directory, you can use Rsh (restricted shell). You can invoke the restricted shell f.i. by changing the last entry in the passwd file. However, the restricted shell can be too restricted for most of the users, because they will also not be able to change to their own sub-directories.
It is indeed also possible to do this with chroot during startup of the login sequence. But then you must populate each usersdirectory with all executables, sharedlibraries, etc-files, ...
At that moment the userdirectory becomes the root for that particular user.
You must decide which executable and which library is necessary and which isn't. This takes between 80 and 100MB per user-directory.
So, if you have lots of users, this could be a problem.
If you only want to prevent users to look in the directories of other users, then I think that it is easier to play with the permissions of the users homedirs
f.i.: As root, you can run:
# chmod 700 /usr/home/
# chown
Now only the user
All the others will get a "Permission Denied" message.
Anyway, there is no easy solution.
Joris
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-24-2003 12:25 PM
тАО06-24-2003 12:25 PM
Re: query on user directory
Work on the directorys permissions so the
home dirs would belong to owners and the group and other could read the dirs.
Caesar
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-24-2003 06:33 PM
тАО06-24-2003 06:33 PM
Re: query on user directory
Thank you for the detailed explanation.
By changing the users directory permission does prevent other users from reading the directory.
But, forgive me for my limited knownledge, what I want is to prevent the user to cd to other directories and is still able to cd to his own sub-directories.
Does the chroot and Rsh able to achieve this?
Regard,
Ronny
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 04:47 AM
тАО06-25-2003 04:47 AM
Re: query on user directory
chroot support this, because it does not limit the access within your home directory.
e.g. "cd .." doesn't work, but "cd test" works
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-25-2003 11:39 AM
тАО06-25-2003 11:39 AM
Re: query on user directory
If you don't want that user will enter to
his directorys you change the owner of the
directory or remove the read option from directory.
Maybe i didn't understand why user could enter
to his sub directorys (if it's his)?
Caesar
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-26-2003 01:19 AM
тАО06-26-2003 01:19 AM
Re: query on user directory
For directories seme bits are - read, write, search.
1) If You disable searching the directory for a user, he will not be able to "enter directory" - i.e. do make it current = cd
2) {I am not 100% sure, but it's easy to test}
- If user has no rights to search directiry, all sub-directiries will be inaccessible as well.
try experimenting with ownership, serach permission on directories and
man chmod
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-26-2003 01:35 AM
тАО06-26-2003 01:35 AM
Re: query on user directory
Thanks for the advise, I will explore on the chroot command.
Hi everyone who reply to this query,
Thank you for your time and advise.
Regards,
Ronny
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-26-2003 07:09 AM
тАО06-26-2003 07:09 AM
SolutionYou can search in the "itrc search field" on f.i. chroot login.
This will give ~50 articles about issues with chroot.
One interesting topic could be http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x595b2d88ce9cd711abdc0090277a778c,00.html
Rgrds