Hi!
In article <[EMAIL PROTECTED]>, Nick Clifford
<[EMAIL PROTECTED]> wrote:
>Personally, a chroot jail is the only thing I trust when I need to setup
>an isolated or restricted environment. Its difficult to break out of a
>chroot jail even when you are root, but it can be done. So ensure they
>
Hi!
In article <[EMAIL PROTECTED]>, Nick Clifford
<[EMAIL PROTECTED]> wrote:
>Personally, a chroot jail is the only thing I trust when I need to setup
>an isolated or restricted environment. Its difficult to break out of a
>chroot jail even when you are root, but it can be done. So ensure they
On Thu, Nov 16, 2000 at 09:02:33AM -0200, Pedro Zorzenon Neto wrote:
> I forgot one thing about all this...
>
> All about the restricted bash could be useless if you forget to
> lock the ftp acount of the restricted users.
>
> You can avoid them to edit and create shell scripts inside their
I forgot one thing about all this...
All about the restricted bash could be useless if you forget to
lock the ftp acount of the restricted users.
You can avoid them to edit and create shell scripts inside their
telnet session, but if you forget to lock their ftp session ...
they could p
On Thu, Nov 16, 2000 at 09:02:33AM -0200, Pedro Zorzenon Neto wrote:
> I forgot one thing about all this...
>
> All about the restricted bash could be useless if you forget to
> lock the ftp acount of the restricted users.
>
> You can avoid them to edit and create shell scripts inside thei
I forgot one thing about all this...
All about the restricted bash could be useless if you forget to
lock the ftp acount of the restricted users.
You can avoid them to edit and create shell scripts inside their
telnet session, but if you forget to lock their ftp session ...
they could
Hi,
On 15 Nov 2000, Peter Cordes <[EMAIL PROTECTED]> wrote:
>
> > Jochen,
> >
> > mkdir /usr/local/bin/restricted;ln -s
> > /usr/local/bin/restricted/;...
> >
> > export PATH=/usr/local/bin/restricted;exec rbash
> >
> > ...boom. Now only the commands you want the user to be able to ru
Hi,
On 15 Nov 2000, Peter Cordes <[EMAIL PROTECTED]> wrote:
>
> > Jochen,
> >
> > mkdir /usr/local/bin/restricted;ln -s
> > /usr/local/bin/restricted/;...
> >
> > export PATH=/usr/local/bin/restricted;exec rbash
> >
> > ...boom. Now only the commands you want the user to be able to r
Subject: Re: restricted bash (rbash)
On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
> On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users
that
> > I just want them to u
: restricted bash (rbash)
On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
> On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users
that
> > I just want them to use a r
$ /bin/sh
rbash: /bin/sh: restricted: cannot specify `/' in command names
Francois, if you want to know more about rbash, take a look at:
http://igbt.sel.eesc.sc.usp.br/cgi-bin/dwww?type=man&location=/usr/share/man/man1/rbash.1.gz
Bye
On Wed, Nov 15, 2000 at 08:11:23PM +0100, Francois Cerbelle
On Wed, Nov 15, 2000 at 12:08:30AM -0800, Alexander Hvostov wrote:
> Jochen,
>
> mkdir /usr/local/bin/restricted;ln -s
> /usr/local/bin/restricted/;...
>
> export PATH=/usr/local/bin/restricted;exec rbash
>
> ...boom. Now only the commands you want the user to be able to run will be
> available
$ /bin/sh
rbash: /bin/sh: restricted: cannot specify `/' in command names
Francois, if you want to know more about rbash, take a look at:
http://igbt.sel.eesc.sc.usp.br/cgi-bin/dwww?type=man&location=/usr/share/man/man1/rbash.1.gz
Bye
On Wed, Nov 15, 2000 at 08:11:23PM +0100, Francois Cerbell
On Wed, Nov 15, 2000 at 12:08:30AM -0800, Alexander Hvostov wrote:
> Jochen,
>
> mkdir /usr/local/bin/restricted;ln -s
> /usr/local/bin/restricted/;...
>
> export PATH=/usr/local/bin/restricted;exec rbash
>
> ...boom. Now only the commands you want the user to be able to run will be
> availabl
That worked really well.
I changed in /etc/passwd
home directory of my restricted users to: /usr/local/bin/restricted
users's shell to: /bin/rbash
And created .bashrc .bash_profile in /usr/local/bin/restricted with:
export PATH=~
Then I put the commands I want to
That worked really well.
I changed in /etc/passwd
home directory of my restricted users to: /usr/local/bin/restricted
users's shell to: /bin/rbash
And created .bashrc .bash_profile in /usr/local/bin/restricted with:
export PATH=~
Then I put the commands I want to
On Tue, Nov 14, 2000 at 03:51:56PM +, Colin Phipps wrote:
: On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
: > On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
: > > I put /bin/rbash as the default shell (in /etc/passwd) for some users
that
: > > I
Jochen,
mkdir /usr/local/bin/restricted;ln -s
/usr/local/bin/restricted/;...
export PATH=/usr/local/bin/restricted;exec rbash
...boom. Now only the commands you want the user to be able to run will be
available. Shell scripts, however, continue to work fine, since their
`hash bang' doesn't pay
On Tue, Nov 14, 2000 at 03:51:56PM +, Colin Phipps wrote:
: On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
: > On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
: > > I put /bin/rbash as the default shell (in /etc/passwd) for some users that
: > > I
On Wed, Nov 15, 2000 at 03:32:20PM +1300, Nick Clifford wrote:
> Pedro Zorzenon Neto wrote:
>
> > Hi, all
> >
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users
> > that
> > I just want them to use a restricted login.
> >
>
>
>
> Ok, I'm assuming you only want users who
Jochen,
mkdir /usr/local/bin/restricted;ln -s
/usr/local/bin/restricted/;...
export PATH=/usr/local/bin/restricted;exec rbash
...boom. Now only the commands you want the user to be able to run will be
available. Shell scripts, however, continue to work fine, since their
`hash bang' doesn't pay
On Wed, Nov 15, 2000 at 03:32:20PM +1300, Nick Clifford wrote:
> Pedro Zorzenon Neto wrote:
>
> > Hi, all
> >
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users
> > that
> > I just want them to use a restricted login.
> >
>
>
>
> Ok, I'm assuming you only want users wh
Pedro Zorzenon Neto wrote:
> Hi, all
>
> I put /bin/rbash as the default shell (in /etc/passwd) for some users
> that
> I just want them to use a restricted login.
>
Ok, I'm assuming you only want users who have this shell to only be able
to access certian things, run only a limited set of co
Pedro Zorzenon Neto wrote:
> Hi, all
>
> I put /bin/rbash as the default shell (in /etc/passwd) for some users
> that
> I just want them to use a restricted login.
>
Ok, I'm assuming you only want users who have this shell to only be able
to access certian things, run only a limited set of c
Hi,
On 14 Nov 2000, Pedro Zorzenon Neto <[EMAIL PROTECTED]> wrote:
>
> When the user logs in, rbash is being executed and the restricted login is
> working well. But, if the user executes 'bash', everything becames
> unrestricted.
>
> How can I deny the execution of shells inside rb
On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
> On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users that
> > I just want them to use a restricted login.
> >
> > When the user log
Hi, all
I put /bin/rbash as the default shell (in /etc/passwd) for some users that
I just want them to use a restricted login.
When the user logs in, rbash is being executed and the restricted login is
working well. But, if the user executes 'bash', everything becames unrestricted.
How can
Hi,
On 14 Nov 2000, Pedro Zorzenon Neto <[EMAIL PROTECTED]> wrote:
>
> When the user logs in, rbash is being executed and the restricted login is
> working well. But, if the user executes 'bash', everything becames unrestricted.
>
> How can I deny the execution of shells inside rbas
On Tue, Nov 14, 2000 at 04:34:33PM +0100, Jan Martin Mathiassen wrote:
> On Tue, Nov 14, 2000 at 01:30:57PM -0200, Pedro Zorzenon Neto wrote:
> > I put /bin/rbash as the default shell (in /etc/passwd) for some users that
> > I just want them to use a restricted login.
> >
> > When the user lo
Hi, all
I put /bin/rbash as the default shell (in /etc/passwd) for some users that
I just want them to use a restricted login.
When the user logs in, rbash is being executed and the restricted login is
working well. But, if the user executes 'bash', everything becames unrestricted.
How ca
30 matches
Mail list logo