Solved

Restricting a user to a direcotry

Posted on 2010-09-21
9
729 Views
Last Modified: 2013-12-06
Hi all,

I have a question regarding confining a user to a particular directory( his home ) only ,In this context the users would be using putty/telnet to get in to the system.

System details :

HP UX B.11.11

HP 9000/800

Users login shell : csh

User needs to be denied cd command or may be cd command to be aliased in such a way that no matter what ever he types in

cd xyz

he is in his home directory and does not go to any other directory.
0
Comment
Question by:Peddu_bhanu
  • 5
  • 4
9 Comments
 
LVL 38

Expert Comment

by:yuzh
Comment Utility
0
 
LVL 1

Author Comment

by:Peddu_bhanu
Comment Utility
chroot i guess would not be an option as it is for ftp users , i tried doing

alias cd='cd $HOME'

in .profile file of the user.However it confined him to $HOME only and doesn't let him go even in the $HOME sub directories.I would like him to go any where in his $HOME and not in any other directory.

Is there any hack/way apart from chroot
0
 
LVL 38

Expert Comment

by:yuzh
Comment Utility
It should would!
but you shout get rid of "alias cd='cd $HOME'" .
0
 
LVL 1

Author Comment

by:Peddu_bhanu
Comment Utility
Well if i get rid of the alias then i would not be able to achieve the criteria.

So is there a way to tweak the cd ( some how aliasing it) in the profile files of the user so that the is confined to his home directory tree and nothing else.
0
Highfive + Dolby Voice = No More Audio Complaints!

Poor audio quality is one of the top reasons people don’t use video conferencing. Get the crispest, clearest audio powered by Dolby Voice in every meeting. Highfive and Dolby Voice deliver the best video conferencing and audio experience for every meeting and every room.

 
LVL 38

Expert Comment

by:yuzh
Comment Utility
With chroot jailed ENV, the user should be able to move around inside the home dir and the sub-dirs (user should be the owner of their home dir).
0
 
LVL 1

Author Comment

by:Peddu_bhanu
Comment Utility
Well yuzh as i said I know it is possible using chrooted env .What I need is any other method and NOT chroot env
0
 
LVL 38

Accepted Solution

by:
yuzh earned 500 total points
Comment Utility
You can try to use "rksh", if it is a FTP only account (not login shell), please have a look at the answer in http:Q_21943197.html
also have a look at the following note:
http://www.hpug.org.uk/index.php?option=com_content&task=view&id=492&Itemid=93
0
 
LVL 1

Author Comment

by:Peddu_bhanu
Comment Utility
I m looking for more options
0
 
LVL 38

Assisted Solution

by:yuzh
yuzh earned 500 total points
Comment Utility
>>I m looking for more options
Please post your requirements, so that the experts can help you, have a nice weekend!
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
FreeBSD on EC2 FreeBSD (https://www.freebsd.org) is a robust Unix-like operating system that has been around for many years. FreeBSD is available on Amazon EC2 through Amazon Machine Images (AMIs) provided by FreeBSD developer and security office…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now