i would like to give out shell accounts to people but i cannot stop them being able to cd ../ all the way up the file tree.They can not remove or damage anything but i want to make thier home directory thier root so they cannot go up any further.
Any suggestions?

Kind Regards :D

come on wake please :) :D :D :D

Sounds like you want a chroot environment. I've not set one up, but there should be plenty of docs on it. Start with "man chroot".

thxs for the chroot command that is not really what i want to do.
i need to change permissions of file types and directories,
but i need an easy way to do it is there such a way?

Originally posted by wendo:
<STRONG>come on wake please :) :D :D :D</STRONG>

I was awake at that time, but at work. And the company doesn't pay my salary to spend time at Linuxnewbie. Sorry about that.

Making sure that your 'shell account users' belong to a group that have no access/read permissions outside their own home dir would probably solve it?

Cheers :)

this message is just to get the post on the front page again :)

You want a restricted shell

man rbash

no manual entry for rbash. :)im using mandrake 8

The man page is the same as for bash. Look in the bash man page for the -r or --restricted switches.
A restricted shell or a chroot jail is, I believe, the only way to accomplish what you want to do. If you start restricting read or execute access (and even write access to some directries) your users will be logging in to a useless evironment. Everyone needs access to folders like /usr/bin and everyone needs access to /tmp for example. If you restrict access to these sorts of directories there will be little point in allowing users into the system in the first place.

DemEtri can you exspand on what you said?

Originally posted by Logon Name Gone:
<STRONG>I was awake at that time, but at work. And the company doesn't pay my salary to spend time at Linuxnewbie. Sorry about that.</STRONG>
Really? You should talk to your boss about that! :D

DemEtri can you exspand on what you said?

Basically what he is saying is this -- if you close down your entire system to users, and they aren't able to access ANYTHING, there's no point in allowing users to log into your system. Think about it. Do you want to be the user of a system that doesn't allow you to do anything but sit in your home directory and look at a blank black screen with a little command prompt. No. So, you have to allow them to have access to certain places (like /usr/bin) which will give them a reason to be on your system.

...actually...I was just thinking. What you are trying to do reminds me of those stupid *** "free shells" that I used to use to try to learn a *nix system when I first began using computers. They sucked very bad. Please don't do that to your users. :rolleyes:


Dark Ninja

[ 15 November 2001: Message edited by: Dark Ninja ]

i only want them to run bots and things from the account :)