Re: chroot vs rsh(restricted shell)

[Ranjeet Shetye <ranjeet.shetye2 () zultys com>]

* Jerome Walter (walter () nexantis net) wrote:
> sreenath sarikonda wrote:
> > Hi Everyone,
> Hi,
>
> > I read 
> > that having setuid programs is insecure. So please
> > suggest me which is 
> > more secure . rsh or chroot.
>
> Basically, it is not the same purpose. For restricting your users, rsh 
> should do it. Indeed, chroot is more a complex to setup, but is more 
> designed to restrict telnetd than the user. At least, it should avoid 
> not_too_expert crackers to use any exploit available in you telnetd program.
>
> BTW, why not use ssh ?
>
> Regards,
>
>
> Jerome

You might want to take a look at "Restricted shell for SSHd."

http://rssh.sourceforge.net/

-- 
Ranjeet Shetye
Senior Software Engineer
Zultys Technologies
Ranjeet dot Shetye at Zultys dot com
http://www.zultys.com/
 
The views, opinions, and judgements expressed in this message are solely those of
the author. The message contents have not been reviewed or approved by Zultys.


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------