[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: restrict user

From: "Alan Mead" <amead8695 home com>
To: <redhat-list redhat com>
Subject: Re: restrict user
Date: Tue, 22 May 2001 12:54:05 -0500

From: Kapil Sharma <linux4biz yahoo com>


: Hi,
: What is the best way to restrict user on the linux
: system. He will get ssh access to the server and i
: want to restrict him for only read only access. Is it
: possible?

There is a restricted shell but I don't know what it's capabilities are.
But read-only would allow executaion of programs which would be a
significant threat and you would have to make sure that they couldn't
execute a more capable shell like bash.  You could also put his home
directory on a partition mounted read-only (but some areas would still be
writable).

I also wonder how much this increases your security because many
locally-exploitable holes would still remain open to this peron.  If you
don't trust him.her, giving him.her shell access is just plain risky.

--
Alan D. Mead, Ph.D.
Aon Consulting / 2405 Brookens Circle / Urbana, IL 61801
voice: +217-344-2698 / fax: +217-344-9066

Follow-Ups:
- Re: restrict user
  - From: Stephen King
- RE: restrict user
  - From: Thang Nguyen

References:
- restrict user
  - From: Kapil Sharma

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]