At 03:50 PM 10/4/00 , Alan Mead wrote:
>At 11:09 AM 10/4/00 , Steve Curry wrote:
>>/home/username and I don't want them to be able to view any directory
>>structures below their home directory. How do I do this? For example a user
>>called ted in /home/ted shouldn't be able to 'cd' down to /home although he
>>can add directorys in his own home directory like /home/ted/more.
>
>IRC, this is the default behavior for Red Hat Linux with it's personal
>group scheme. Also IIRC, in order to allow
Clarification: I am mistaken (actually I misread). The other posts about
jailing your users is what you want to stop them moving around the
directory structure and this is not default RH behavior.
The default behavior prevents users from reading (or modifying, deleting,
etc.) other users' data. But they could, for example, know that another
user named 'ted' has a home directory. I think that's usually sufficient
given that the alternative is a lot of work (I think you will break a lot
of standard stuff) ... but only you can decide that for yourself. Jailing
would seem to be a lot more secure if you can make it work well.
-Alan
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
