Limited shell?

L

Lisio2012-01-23 18:01:23

SSH

Lisio, 2012-01-23 18:01:23

Limited shell?

By what means do hosters close the user in his home directory when accessed via ssh? Chroot, rbash or something else?
I want to understand how to block 100 users in the home directory without the ability to see other users' directories and without the ability to run binaries.

Reply

Answer the question

In order to leave comments, you need to log in

5 answer(s)

I

Ilya Plotnikov, 2012-01-23
@ilyaplot

in timeweb I could view the config files. The opportunity appeared like this: cd ... && cd ...
I wrote to the support that they had a hole, but they replied that it would not be possible to completely block access. Important configs were unreadable.

A

Andrey Burov, 2012-01-23
@BuriK666

make /home on a separate partition and mount it with noexec
chmod 750 /home /home/*

E

ertaquo, 2012-01-23
@ertaquo

http://www.opennet.ru/opennews/art.shtml?num=14331
http://www.opennet.ru/base/sec/ssh_chroot.txt.html
Not?

P

pomeo, 2012-01-24
@pomeo

shove them into containers lxc.sourceforge.net/

C

charon, 2012-01-24
@charon

the ftp server spins normally to the home directory, there's not even anything to write about.
As for ssh, Fre has a jail for this, in modern versions of OpenSSH, chroot works well out of the box - it securely closes in the home directory