Security Basics mailing list archives

RE: Locking down a user

From: Steve McKinney <sjm () porter acadaff appstate edu>
Date: Thu, 26 Jun 2003 19:55:04 -0400 (EDT)

how would i go about that?  

-Steve

On Thu, 26 Jun 2003, Striani Mariano wrote:

What if... you customize a shell to allow only the scp and assign it to the
user??

-----Mensaje original-----
De: Jason K. Boykin [mailto:jboykin () summit-research-corp com]
Enviado el: Wednesday, June 25, 2003 02:29 PM
Para: Steve McKinney
CC: security-basics () securityfocus com
Asunto: Re: Locking down a user


On Wednesday 25 June 2003 01:17 pm, Steve McKinney wrote:

I need to lock down a useer so that they can only ssh in for scp
puposes and stay in a certain directory.  I've looked around with google,
but I can't find what I'm looking for.  Can someone point me the right
direction, maybe a tutorial that they have found useful?

Thank you for your time,
-Steve


Sounds like you are looking for something refered to as chrooting or
jailing.

Doing a google search on chroot should turn you up with lots of info.  I
spent 
some time doing this last year but have forgotten most of it myself.

Im sure there would be another way of doing this with permissions.

Good luck!

---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------



---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------

Current thread:

Locking down a user Steve McKinney (Jun 25)
- Re: Locking down a user Jason K. Boykin (Jun 26)
- Re: Locking down a user Devdas Bhagat (Jun 26)
- <Possible follow-ups>
- Re: Locking down a user Joerg Over Dexia (Jun 26)
- RE: Locking down a user Steve McKinney (Jun 27)
  - Re: Locking down a user N407ER (Jun 30)