Allowing an user to only access a folder (SSH)

[romtoc]

Hello,
I need to create a user on my B3 box and I want to restrict his access to only one folder.

Can this be done? If yes, how?

[Cheeseboy]

Hi romtoc,

What do you mean with "access"?
You can control Read, Write, and Execute permissions...

[romtoc]

Hello Cheeseboy,
Thanks for your reply.

By "access", I meant the user can only read/write and execute files in a directory.

[Gordon]

Probably your best bet would be to create a wrapper script and assign that to be the users shell. Something like...

Code: Select all

#!/bin/bash
while read command params; do
  if [ ! -z `echo grep -e "^"$command"$" /some_location/allowed_commands.lst`]; then
    eval $command $params
  fi
done

[Ubi]

Indeed, you cannot fully restrict SSH read/write to a certain folder without restricting the possible command list this user can execute.
I suppose what might work is setting low quota on the root dir for this user to prevent writing, but it's a dirty trick and he'll probably experience crashes from commands that want to write some temp stuff.

A more sophisticated method is presented here: http://www.jmcresearch.com/projects/jail/

[romtoc]

Ok, thanks for your help.
I found a simple method... a web file-manager...

[RandomUsername]

Ok, thanks for your help.
I found a simple method... a web file-manager...

But the Bubba already has one! :S

[romtoc]

I used a more advanced one where I can change the permissions.