View Full Version : Permissions
hello guys !
i need help on my server ,
its almost a month now and i cant fix this one .
i added my self as a user on my server , and i observed that i can view root folders even though im a user, i can view like /var/etc..
i want to fix that one , i want the to view there own folders only . i use CPANEL/WHM . can someone help me please!
vdsmania
02-13-2005, 06:54
use jailshell in whm
tweak settings
nominalsoul
02-15-2005, 01:44
A lot of those files in /etc a /bin and such are normally viewable by users. You could change the directory to -r, which would disallow directory listing, but they would still be able to view files if they knew the filename. The only for sure way is by using a chroot jail cell as described above. Basicly this means that you setup a directory with the bare minimum files required for the user, then you change the root to that directory. Once they are chrooted, they can't go back and access the normal filesystem. You can find instructions on how to create a chroot jail cell on google.
Manansala
02-15-2005, 03:46
Jailshell will disallow user access to general compilers, which includes gcc etc.. I believe he's running his server as shell services.
There is no way to make what he wants to happen possible coz the shell user is dependent (includes what they want to run) on the system files they can view. They can view coz they need those files, on the edit part, not.
I was thinking of modifying his Kernel, only the system might just confuse him. There is an equal reaction to every possible modification.
Modify Kernel, all installation defaults for every new package must be installed manually. Takes more time.
If by any chance someone has brighter ideas, I'd be very much delighted to view solutions. :)
mikron15
02-15-2005, 06:31
umm, i was thinking of just enabling jail shell for all acct and in WHM settings, u can set for which all acounts,such as shell accts he hosts, to allow compilers to work.
Manansala
02-15-2005, 18:02
umm, i was thinking of just enabling jail shell for all acct and in WHM settings, u can set for which all acounts,such as shell accts he hosts, to allow compilers to work.He wants to disable view, which is r in rw. If no r, there is no copy to compile.
badpenguin
02-21-2005, 01:42
just for info: if you have your servers permissions messed up to fix use
rpm --setperms -qa
will fix them to what they should be
:rolleyes:
badpenguin
02-21-2005, 05:37
:p
vBulletin® v3.7.3, Copyright ©2000-2009, Jelsoft Enterprises Ltd.