[Ilugc] Restrict users commands

• From: girishvenkatachalam@xxxxxxxxx (Girish Venkatachalam)
• Date: Wed Sep 9 20:10:50 2009

On Wed, Sep 9, 2009 at 3:15 PM, Govi<govi.lin@xxxxxxxxx> wrote:

Hi,

I want to restrict users normal command.i mean specified users must use only
below command,
cp
mv
dig
telnet
ssh

other commands did n't accect,while running through the specified users.
anybody have idea.

I like all ideas given by others and I may not get into
testing this thing due to lack of time. Though I shall
surely get to it as and when time permits and post to LUG. This could
even take a month. Anyway.

The first thought that occurred to me was  chroot with
just these commands. But chroot can only be done by root.

So you could have a "janitor daemon" that runs as root and
you could have users access these commands through a
janitor service. This is what I am doing in my SpamCheetah
product.

I know you can get a lot more creative and secure but this
seems like a good idea.

Along with all other ideas given by others.

-Girish
-- 
Gayatri Hitech
web: http://gayatri-hitech.com

SpamCheetah Spam filter:
http://spam-cheetah.com

• References:
  • [Ilugc] Restrict users commands
    • From: Govi

Other related posts:

• » [Ilugc] Restrict users commands- Govi
• » [Ilugc] Restrict users commands- Bharathi Subramanian
• » [Ilugc] Restrict users commands- Balaji Narayanan
• » [Ilugc] Restrict users commands- Hrishikesh Murali
• » [Ilugc] Restrict users commands- Kapil Hari Paranjape
• » [Ilugc] Restrict users commands - Girish Venkatachalam

1. Home
2. ilugc
3. Archive
4. 09-2009

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---