Re: limiting user access

To: Paul Miller <paul@3dillusion.com>
Cc: Debian User <debian-user@lists.debian.org>
Subject: Re: limiting user access
From: bhmit1@mail.wm.edu
Date: Wed, 11 Feb 1998 22:08:18 -0500 (EST)
Message-id: <[🔎] Pine.LNX.3.96.980211220043.16555A-100000@cnhobbes.ml.org>
In-reply-to: <[🔎] Pine.LNX.3.96.980211214222.3043B-100000@3dillusion.com>

> > > Is it possible to restrict user access so users can not execute any
> > > programs?  (programs which they copied on to my system).  - FreeBSD can do
> > > this sort of thing

> > Mount the user writable areas with the noexec option.  Probably want to
> > put it in the /etc/fstab.

> Is there any way to do this for only certain groups?

Best I can do is suggest the use of group homes in /etc/adduser.conf.  Of
course, if the users have already been added, this is a pain.  Oh, you
could also use a restricted shell so they can't execute programs not in
the current path and so they can't alter the environment (like the path).
You have to be pretty good to set up an restricted shell environment that
the user can't break out of.

Good luck,
Brandon

-----
Brandon Mitchell <bhmit1@mail.wm.edu>   "We all know linux is great... it
PGP: finger -l bhmit1@cs.wm.edu          does infinite loops in 5 seconds"
Phone: (757) 221-4847                      --Linus Torvalds


--
TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word "unsubscribe" to
debian-user-request@lists.debian.org . 
Trouble?  e-mail to templin@bucknell.edu .

Reply to:

References:
- Re: limiting user access
  - From: Paul Miller <paul@3dillusion.com>

Prev by Date: Re: lchown(), libc6-2.0.7pre1, and 2.1.8x kernels
Next by Date: Re: zip drive
Previous by thread: Re: limiting user access
Next by thread: Re: limiting user access
Index(es):
- Date
- Thread