From owner-freebsd-isp Thu Oct 23 01:27:49 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id BAA09521 for isp-outgoing; Thu, 23 Oct 1997 01:27:49 -0700 (PDT) (envelope-from owner-freebsd-isp) Received: from panda.hilink.com.au (panda.hilink.com.au [203.8.15.25]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id BAA09516 for ; Thu, 23 Oct 1997 01:27:45 -0700 (PDT) (envelope-from danny@panda.hilink.com.au) Received: (from danny@localhost) by panda.hilink.com.au (8.8.5/8.8.5) id SAA13871; Thu, 23 Oct 1997 18:27:29 +1000 (EST) Date: Thu, 23 Oct 1997 18:27:28 +1000 (EST) From: "Daniel O'Callaghan" To: Shawn Ramsey cc: Nguyen Phi Khanh , freebsd-ISP@FreeBSD.ORG Subject: Re: limiting users from cd-ing to directories. In-Reply-To: Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-isp@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Wed, 22 Oct 1997, Shawn Ramsey wrote: > > It's come to my attention that there's supposedly a method to > > limit users from cd-ing out of the home directory of their account. Say, > > if a user's home directory is /home/users/johndoe, then he can't cd to > > /home/users or /home or even to any other system directory but his own and > > the subdirectories within his home directory. If this is true, how is it > > done? Supposedly login.conf? > > Its done with wu-ftpd, and making the users home directory > /usr/home/users/./ and putting something like this in ftpaccess : > > guestgroup ftpusers > > then all users in ftpusers would be limited to their home > directory(provided they have a /./ at the end) Also done with FreeBSD's ftpd. Read the manpage. Put the user's name in /etc/ftpchroot. Or put the user in a class which includes the boolean 'ftpchroot' (see man login.conf(5)). you'll want to rebuild ftpd using -DBUILTIN_LS or whatever it is called. Danny /* Daniel O'Callaghan */ /* HiLink Internet danny@hilink.com.au */ /* FreeBSD - works hard, plays hard... danny@freebsd.org */