Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Lock down a user to just their home directroy

Posted on 2004-05-02
4
Medium Priority
?
345 Views
Last Modified: 2013-12-16

I have a group of people that I want to have read/write access to a directory.  They are windows users that will be useing the winscp software to download pictures of homes.  

I want to limit them to just that one directory.  They are currenty a memeber of the "user's" group and have a shell of /bin/bash.

Should I change the shell to nothing? Should I create a new group and not give them rights to anything.  Should I to a changeroot jail.

I do not want anybody deleting any of my system files and I do not want them viewing any images on my system that were not intended for them to view.

Winscp is working NOW so I would like to get this fixed before someone gets curious

timfox123
0
Comment
Question by:TIMFOX123
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 38

Accepted Solution

by:
yuzh earned 2000 total points
ID: 10974065
You can setup "chroot login" to do the job, have a look at the following doc to get some
idea about how to set it up:

http://www.tjw.org/chroot-login-HOWTO/

also have a look at:

http://chrootssh.sourceforge.net/index.php
0
 

Author Comment

by:TIMFOX123
ID: 10974421
I am reviewing this.  It appears scponly is a grand tool for his and I am evaluating this.  

Any commnents on scponly ?

Dave
0
 
LVL 38

Expert Comment

by:yuzh
ID: 10974893
Here's another example of chroot login setup:

http://www.kegel.com/crosstool/current/doc/chroot-login-howto.html
0
 

Author Comment

by:TIMFOX123
ID: 10991861
scponly really ROCKS !!!!

I have a passworded share and the windows users use a gui winscp to drag/drop to my share.  They are change root jailed so they can not mess with my other files.   Easy safe secure (ish).  

This was so much easier than making a jail, you just typed in the make jail and it made a change root jail.  

Wahhooo, I am happy.  Now the other people in the Home Owners Association do not think I am a moron (untill another day).

Dave
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension (http://www.experts-exchange.com/discussions/210281/Attachments-with-no-extension.html). This reminded me of questions tha…
In part one, we reviewed the prerequisites required for installing SQL Server vNext. In this part we will explore how to install Microsoft's SQL Server on Ubuntu 16.04.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question