<div>
<div class="content wysiwyg-content">
Hi Team,<br />
<br />
We use RHEL 5 and 6 servers and we installed vsftpd for secure access for our users to upload and download files. We have a specific requirement here;<br />
<br />
We create individual Shell accounts for each customer who wants to upload their files to our servers. lets say customer1 created with home directory (/home/customer1). I noticed with VSFTP configuration, this customer can upload files to /home/customer1 and also was able to browse other folders on the system (ex, /opt, /root). The customer can also download files from /opt folder where we have some confidential files stored in.<br />
<br />
IS there any configuration that you suggest so that individual user can only locked down to their home folders only. They should not access any folders on the server other than to their home directories (/home/&lt;customer1&gt;, &lt;customer2&gt;)<br />
<br />
<br />
Can you please shed some light on this?<br />
Thanks
</div>
</div>


Hi Team,

We use RHEL 5 and 6 servers and we installed vsftpd for secure access for our users to upload and download files. We have a specific requirement here;

We create individual Shell accounts for each customer who wants to upload their files to our servers. lets say customer1 created with home directory (/home/customer1). I noticed with VSFTP configuration, this customer can upload files to /home/customer1 and also was able to browse other folders on the system (ex, /opt, /root). The customer can also download files from /opt folder where we have some confidential files stored in.

IS there any configuration that you suggest so that individual user can only locked down to their home folders only. They should not access any folders on the server other than to their home directories (/home/<customer1>, <customer2>)


Can you please shed some light on this?
Thanks

VSFTPD - restrict local users to access their home directories only

Linux is a UNIX-like open source operating system with hundreds of distinct distributions, including: Fedora, openSUSE, Ubuntu, Debian, Slackware, Gentoo, CentOS, and Arch Linux. Linux is generally associated with web and database servers, but has become popular in many niche industries and applications.

Linux

Unix is a multitasking, multi-user computer operating system originally developed in 1969 at Bell Labs. Today, it is a modern OS with many commercial flavors and licensees, including FreeBSD, Hewlett-Packard’s UX, IBM AIX and Apple Mac OS-X. Apart from its command-line interface, most UNIX variations support the standardized X Window System for GUIs, with the exception of the Mac OS, which uses a proprietary system.

Unix OS

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.