From owner-freebsd-questions  Fri Jun 26 07:46:59 1998
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id HAA17756
          for freebsd-questions-outgoing; Fri, 26 Jun 1998 07:46:59 -0700 (PDT)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from gateway.blueberry.co.uk (gateway.blueberry.co.uk [195.153.48.66])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id HAA17627
          for <questions@freebsd.org>; Fri, 26 Jun 1998 07:45:56 -0700 (PDT)
          (envelope-from keith@blueberry.co.uk)
Received: from intranet.blueberry.co.uk (intranet.internal.blueberry.co.uk [10.0.0.2])
	by gateway.blueberry.co.uk (8.8.8/8.8.8) with ESMTP id PAA02185;
	Fri, 26 Jun 1998 15:45:42 +0100 (BST)
	(envelope-from keith@blueberry.co.uk)
Received: (from keith@localhost)
	by intranet.blueberry.co.uk (8.8.8/8.8.8) id PAA13089;
	Fri, 26 Jun 1998 15:48:06 +0100 (BST)
	(envelope-from keith)
Message-ID: <19980626154806.00479@blueberry.co.uk>
Date: Fri, 26 Jun 1998 15:48:06 +0100
From: Keith Jones <keith@blueberry.co.uk>
To: IBS / Andre Oppermann <andre@pipeline.ch>
Cc: questions@FreeBSD.ORG
Subject: Re: Homedir 'hiding'
References: <3593A42A.6241BDF1@pipeline.ch>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 0.89i
In-Reply-To: <3593A42A.6241BDF1@pipeline.ch>; from IBS / Andre Oppermann on Fri, Jun 26, 1998 at 03:37:46PM +0200
Organization: Blueberry New Media Ltd.
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Fri, Jun 26, 1998 at 03:37:46PM +0200, IBS / Andre Oppermann wrote:

> We give our customers at the moment only chrooted ftp access (ftpd
> with internal LS) to their www-homedirs. Some users however ask for
> telnet access.
> 
> The problem we have is that if someone logs in that person can see
> all homedirectories of other customers. The user with telnet access
> has an own group but can still see the other homedirs but not enter
> them (no permission of course).
> 
> My question is now: what can I do that the telnet users cant see
> the other homedirs (don't tell me 'rm -R *' ;-)).
> 
> PS: I have tried to set the permissions to drwx------ but it is
> still visible with ls.

It depends on how your partitions are set up. /home is usually, but not
always, a symlink to /usr/home. If this is so, use

	chmod 511 /usr/home

If this is not so - for instance, if the /home tree is on its own partition -
then you need to

	chmod 511 /home

N.B. Some shells may complain about this. tcsh, for instance, will generate
the following error on invocation:

tcsh: Permission denied
tcsh: Trying to start from "/home/<user>"

[tcsh will still work, but the error is a bit annoying.]

Keith
-- 
v Keith Jones                 Systems Manager, Blueberry New Media Ltd. v
| Postal Mail: 2/10 Harbour Yard, Chelsea Harbour, LONDON, UK. SW10 0XD |
| Telephone: +44 (0)171 351 3313               Fax: +44 (0)171 351 2476 |
^ Email: Keith.Jones@blueberry.co.uk   WWW: http://www.blueberry.co.uk/ ^

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message