oh be really really really careful with this you can take away peoples access to libraries and executables and generally bork your system so be supper careful. nangus
On Dec 11, 2007 10:19 PM, Nangus Garba <[EMAIL PROTECTED]> wrote: > if you want to make it so that a user can not look at a directory such as > /var you can use a command such as: > chmod o-x /var > > basically that takes away execute privileges for other. Basically what > happens when you run the ls command it executes the directory. You can do > that for each directory that you do not want anyone but the owner or root to > be able to look at. > Read the man page of chmod for a better explanation. > > > On Dec 11, 2007 8:27 PM, Grant <[EMAIL PROTECTED]> wrote: > > > I'd like to create a really restricted user on my laptop. I don't > > want the user to be able to do much of anything but browse the web, > > use skype, and maybe look at photos on a CD or something. I did this: > > > > useradd -m -G users,audio,cdrom -s /sbin/nologin newuser > > > > How does that look? I've noticed when adding this kind of a user in > > the past they are able to look at files all around the system that I'd > > prefer they can't. Is there a good method for restricting that? > > Maybe remove the users group? Is a weak password OK with this setup > > since there's no shell access? > > > > - Grant > > -- > > [EMAIL PROTECTED] mailing list > > > > >
