[plug] user rights
Richard Henry
r.henry at murdoch.edu.au
Mon Jun 3 12:38:35 WST 2002
> On 31 May 2002, Jon L. Miller wrote:
>
> > Need to create a account with ro rights to all directories,
> how can I
> > do this?
>
> Ypu can't easily, You may need to install the POSIX ACL's from
> bestbits. Then you can have upto 32 entries agaist a files
> or directory.
>
> Another option would be to set his/her shell to a chroot
> enviroment. then whatever way they access the box they can
> only pee in there own pool.
>
>
> Some context info might make it easier to come up with work arrounds
>
> Yours Tony
>
> Jan 22-26 2003 Linux.Conf.AU http://conf.linux.org.au/
> The Australian Linux Technical Conference!
>
I think I am dumb, I can't for the life of me see how chroot'ing an accounts
shell could help give a user account read-only access to all directories in
a system (which is what I assume Jon is asking for)...
If you just want to be able to list the files in any directory with a
non-root account, 'man sudo' and point it at /bin/ls . I assume you don't
want this account to be able to READ all the files, as they could then just
look at /etc/shadow and brute the root password.
But as Tony says, context would help.
Rich.
More information about the plug
mailing list