-----Original Message----- From: Steve Curry <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] <[EMAIL PROTECTED]> Date: Wednesday, October 04, 2000 2:00 PM Subject: Locking down a multiuser system. >List, > > >First of all thanks ahead of time! I'm building a multiuser system that will >be home to many untrusted user accounts. They are being setup in >/home/username and I don't want them to be able to view any directory >structures below their home directory. How do I do this? For example a user >called ted in /home/ted shouldn't be able to 'cd' down to /home although he >can add directorys in his own home directory like /home/ted/more. > It looks like you want to chroot them into there home directories. That will make it as if their home directory was the root directory. Thus they can't cd up, as there wouldn't be anything higher than their new "root". If you do so though, you will need to make some changes to whats in those home directories. As I understand it, you will need to statically compile things like ls and bash and place them into each home directory to be treated thusly. I've not had to do this, as I don't allow shell access on most of the systems I work with. You should check out man chroot for some more info, and perhaps the HOWTO's for the nitty gritty. Hope this helps. Jeff Hogg _______________________________________________ Redhat-list mailing list [EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
