John Riddoch wrote:
>
> Shiloh Costa wrote:
> > What kinds of methods could someone use to only allow 2 or 3 users to have
> > SSH capability, and deny anyone else from creating their own .ssh subdir
> > via FTP?
> >
> > The only way I can think of is to pre-create an .ssh directory, and chown
> > it to root with no write permissions.
>
> Doesn't work; since the user has rwx permission in their home directory,
> they can just delete anything below it.
Create a file in .ssh owned by root with owner write only. Change the
owner of .ssh to root and set it owner write only. Now the user cannot
delete the directory.
--
Stephen Carville
[EMAIL PROTECTED]
----------------------------------------------------
Management: The art of hiring intelligent, skilled individuals and then
ignoring their advice.
