From owner-freebsd-questions@FreeBSD.ORG Tue May 30 07:28:41 2006 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6417816A41F for ; Tue, 30 May 2006 07:28:41 +0000 (UTC) (envelope-from freebsd@amadeus.demon.nl) Received: from post-25.mail.nl.demon.net (post-25.mail.nl.demon.net [194.159.73.195]) by mx1.FreeBSD.org (Postfix) with ESMTP id 023EA43D4C for ; Tue, 30 May 2006 07:28:40 +0000 (GMT) (envelope-from freebsd@amadeus.demon.nl) Received: from amadeus.demon.nl ([82.161.18.200]:55383 helo=[10.0.1.2]) by post-25.mail.nl.demon.net with esmtp (Exim 4.51) id 1Fkyec-0007B4-Pg; Tue, 30 May 2006 07:28:39 +0000 In-Reply-To: <016a01c68389$0a99fd20$5ac8a8c0@loui> References: <016a01c68389$0a99fd20$5ac8a8c0@loui> Mime-Version: 1.0 (Apple Message framework v750) X-Priority: 3 Content-Type: text/plain; charset=ISO-8859-1; delsp=yes; format=flowed Message-Id: <35B89C88-8B35-4B97-86FF-5DA4DC8D3CC9@amadeus.demon.nl> Content-Transfer-Encoding: quoted-printable From: usergroup Date: Tue, 30 May 2006 09:28:37 +0200 To: GiL A. Virtucio X-Mailer: Apple Mail (2.750) Cc: questions@freebsd.org, Marwan Sultan Subject: Re: User Access restriction. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 30 May 2006 07:28:41 -0000 On 30 mei 2006, at 03:33, GiL A. Virtucio wrote: > to restrict users from navigating outside their home directories =20 > through FTP try using an FTP server that support chrooting. you =20 > might want to check proftpd. http://www.proftpd.org/ > it is also included in the ports collection. > > hope this helps :) > > > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D > Gil A. Virtucio > Janitor/Kolektor/Messenger/Driver > Asia Solution Phillippines Inc. > 28/F Antel Global Corporate Center > 3 Do=F1a Julia Vargas Avenue, > Ortigas Center, Pasig > Office # : +63-2-687-0692 loc. 103 > Mobile # : +63-916-3989695 > http://www.gihl.eu.org/ > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D > ----- Original Message ----- From: "Marwan Sultan" =20 > > To: > Sent: Tuesday, May 30, 2006 5:15 AM > Subject: User Access restriction. > > >> Hello Everyone, >> >> I have a server Up and running, 4.8-R, (well why 4.8? its up =20 >> since years) >> However, this server is for commercial use, recently, we started =20 >> Home pages hosting, >> which requier me to give the user access to the shell, >> >> Well, the question, >> >> Lets say, I have 2 groups, Group1, Group2 >> under Groupe1 is the webpages shell accounts (user accounts) >> and group2, just shell users, >> >> If user1 from Group1 will ftp or ssh to the box, his default home =20= >> path will be >> /home/group1/user1 >> But, he still can navigate thro his FTP or ssh to see the =20 >> directories and read files of group1 or >> group2, and play around lilbit, >> >> PLEASE how to restrict this user from going outside his shell =20 >> account and restrict him from >> viewing others folders and webpages ? If i will chmod to something =20= >> limited, then even when >> he browse the web to his webpage it wont work, >> >> So how to have the restriction in the same time viewing his web =20 >> thro any browser worldwide? >> >> Sorry for the long email. >> >> Thank you, >> Marwan >> >> or have a look at "man ftpchroot" Arno