Re: chroot vs rsh(restricted shell)

["John Vill" <kalookalaa () hotmail com>]

setuid or gid programs are only insecure if they are made that way.
If you want to restrict users have you tried playing with the permissions? 
Put all the users you want to restrict into a certain group and set the rwx 
approprietly for all files, directories, binaries and such. I lost the 
original email so sorry if Im not answering the question right. On Linux I 
know there is the 'useradd' program which can let you add users and specify 
the home directory the gid uid the shell and so forth. If invoked without 
the special options it will use the defaults which are listed in the text 
/etc/default/useradd so you can change the defaults and make a script that 
calls the command whenever a user is added. There is probably some neat 
program out there, if I find something Ill let you know. chroot I would use 
if I wanted to run an ftp server or something, but that doesnt need to be 
ran as root anyway.

_________________________________________________________________
Getting married? Find great tips, tools and the latest trends at MSN Life 
Events. http://lifeevents.msn.com/category.aspx?cid=married


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------