Ping a Specific Port

Question

Garry Harthill

Asked: 2009-05-22 07:16:22 +0800 CST2009-05-22 07:16:22 +0800 CST 2009-05-22 07:16:22 +0800 CST

Chrooting a users login

772

I want to limit certain users on my system to a subset of commands and have absolutely no access to the rest of the system. I figure chrooting is the way to solve this but I only know how to chroot a ftp user. Can this be done for normal shell users and how can I achieve this?

2 Answers

Voted

Adam · Answer 1 · 2009-05-22T07:28:00+08:00

Best Answer

Adam

2009-05-22T07:28:00+08:002009-05-22T07:28:00+08:00

Jailkit simplifies it.

Jailkit is a set of utilities to limit user accounts to specific files using chroot() and or specific commands. Setting up a chroot shell, a shell limited to some specific command, or a daemon inside a chroot jail is a lot easier and can be automated using these utilities.

6

davenpcj · Answer 2 · 2009-06-16T06:29:43+08:00

davenpcj

2009-06-16T06:29:43+08:002009-06-16T06:29:43+08:00

Please use chroot with extreme caution, it's well known that it doesn't provide the complete protection it seems to.

chroot limitations from wikipedia

I remember a debate on the LKML about fixing "bugs" in chroot that allowed users to escape; kernel developers have answered that chroot is not intended to be a security mechanism.

0

Chrooting a users login

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?