From owner-freebsd-questions Tue Apr 3 12:23:23 2001 Delivered-To: freebsd-questions@freebsd.org Received: from flarn.it.ca (it.ca [199.45.111.1]) by hub.freebsd.org (Postfix) with ESMTP id 0ED9E37B71D for ; Tue, 3 Apr 2001 12:23:19 -0700 (PDT) (envelope-from paul@flarn.it.ca) Received: (from paul@localhost) by flarn.it.ca (8.9.3/8.9.3) id PAA42190; Tue, 3 Apr 2001 15:23:11 -0400 (EDT) (envelope-from paul) Date: Tue, 3 Apr 2001 15:23:10 -0400 From: Paul Chvostek To: Lee Mark Mercado Cc: freebsd-questions@FreeBSD.ORG Subject: Re: re : user management Message-ID: <20010403152310.Z12995@flarn.it.ca> References: <28342380.986323368449.JavaMail.imail@ally.excite.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <28342380.986323368449.JavaMail.imail@ally.excite.com>; from LeeMark@excite.com on Tue, Apr 03, 2001 at 11:42:48AM -0700 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Are these shell users, or FTP users? If they're FTP, your best bet is to make them a common group, then add that group to /etc/ftpchroot. For example: # tail -2 /etc/passwd john:*:10266:101:John:/home/john:/sbin/nologin mary:*:10267:101:Mary:/home/mary:/sbin/nologin # grep 101 /etc/group plebes:*:101: # cat /etc/ftpchroot @plebes # If your goal is to restrict this information for *shell* users, you need to set permissions on directories. You might: # chgrp wheel /home # chmod 751 /home # chmod go-r /home/* to disallow users' ability to see what other users have directories and turn off group+other read permissions on those users' directories. If you want to restrict access to other directories, you can turn off read permissions in them as well, but beware that there are some things the system may want set up a certain way. If you're not familiar with unix permissions, I strongly advise that you not run a publically accessible shell server. On Tue, Apr 03, 2001 at 11:42:48AM -0700, Lee Mark Mercado wrote: > > hi, > > i was wondering how i could set each user not to see/run/access other > user-files/directories. > > Also, i dont want the other users to see the directories other than /home. > > your help will be greatly appreciated. thx > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message