From owner-freebsd-questions  Fri Jan 31 14:25:33 2003
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 3D1E637B4AC
	for <freebsd-questions@freebsd.org>; Fri, 31 Jan 2003 14:25:29 -0800 (PST)
Received: from rwcrmhc51.attbi.com (rwcrmhc51.attbi.com [204.127.198.38])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 950FB43F3F
	for <freebsd-questions@freebsd.org>; Fri, 31 Jan 2003 14:25:28 -0800 (PST)
	(envelope-from freebsd-questions-local@be-well.no-ip.com)
Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com[24.147.188.198])
          by rwcrmhc51.attbi.com (rwcrmhc51) with ESMTP
          id <2003013122252805100htmp9e>; Fri, 31 Jan 2003 22:25:28 +0000
Received: from be-well.ilk.org (lowellg.ne.client2.attbi.com [24.147.188.198] (may be forged))
	by be-well.ilk.org (8.12.6/8.12.6) with ESMTP id h0VMPQEC000514;
	Fri, 31 Jan 2003 17:25:26 -0500 (EST)
	(envelope-from freebsd-questions-local@be-well.no-ip.com)
Received: (from lowell@localhost)
	by be-well.ilk.org (8.12.6/8.12.6/Submit) id h0VMPHCp000509;
	Fri, 31 Jan 2003 17:25:17 -0500 (EST)
X-Authentication-Warning: be-well.ilk.org: lowell set sender to freebsd-questions-local@be-well.ilk.org using -f
To: Stephane Lee <slee@ile-maurice.com>
Cc: Jay Sern Liew <jay@sendtech.net>, freebsd-questions@FreeBSD.ORG
Subject: Re: restricting user's directory listing and changing
References: <20030131144801.D66132-100000@otto.moris.org>
From: Lowell Gilbert <freebsd-questions-local@be-well.no-ip.com>
Date: 31 Jan 2003 17:25:17 -0500
In-Reply-To: <20030131144801.D66132-100000@otto.moris.org>
Message-ID: <4465s50xf6.fsf@be-well.ilk.org>
Lines: 18
User-Agent: Gnus/5.09 (Gnus v5.9.0) Emacs/21.2
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

Stephane Lee <slee@ile-maurice.com> writes:

> You may want to check the restricted bash.
> http://www.gnu.org/manual/bash-2.05a/html_node/bashref_75.html

Just be careful; restricted shells aren't really intended for
security.  They're more for situations where you want to avoid
shooting yourself in the foot.  For real security, you need something
more like chroot(8) or jail(8).

> On Fri, 31 Jan 2003, Jay Sern Liew wrote:
> 
> > Greetings.
> >
> >      Basically, I have this group of users, that I give SSH/SFTP access, but I
> > don't want them to be able to see the complete file hierarchy and ``cd'' to
> > them. I just want a user to be able to access the user's home, and that's it.


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message