Re: [rhn-users] restrict user's browsing area

[Charith Perera <cperera intertechmedia com>]

If the user can use ftp, then just replace his default shell in /etc/passwd 
with "/sbin/nologin", this will prevent the user from loging into the system, 
but he'll still be able to use ftp. Then configure the ftp daemon (I use 
vsftpd) to chroot the user to his home directory. Doing that is much easier:

"chroot_local_user=YES"

There's no copying of libraries etc to be done. 

Charith.


On Sunday 05 October 2003 22:15, Michael Lai wrote:
> I am glad I am not the only one with this concern.  I heard a little about
> chrooting but am not familiar with it.  I find its documentation to be a
> bit vague and the procedures are quite complicated too.  For starters, I
> think I will have to recompile my ssh to support chrooting.  Then I have to
> put all those dummy bash libraries inside his $HOME.  Actually, I was
> thinking that I would create a user account for my friend but without any
> shell script support.  But that won't stop him from moving upwards and
> browsing other directories using scp.
>
>
> _______________________________________________
> rhn-users mailing list
> rhn-users redhat com
> https://www.redhat.com/mailman/listinfo/rhn-users