Date: Wed, 5 Jun 2002 16:27:18 +0300 (EEST) From: Alexander V Zubchenko <stalker@hermes-comp.zp.ua> To: Matthias Buelow <mkb@informatik.uni-wuerzburg.de> Cc: Admin/Manager <leroy@3dmasters.net>, <freebsd-questions@FreeBSD.ORG> Subject: Re: SHELL ACCESS Message-ID: <20020605161954.P42835-100000@server.hermes-comp.zp.ua> In-Reply-To: <20020605131719.GB1211@reiher.informatik.uni-wuerzburg>
next in thread | previous in thread | raw e-mail | index | archive | help
Greetings! On Wed, 5 Jun 2002, Matthias Buelow wrote: > Alexander V Zubchenko writes: > > >I don't know about such features in shells, but you may play around with > >access permissions (e.g. make anything world-inaccessible, place users in > >nobody group and set rights so anything will b protected from access, > >excepting home). > > Commercial systems typically have a "restricted shell" command, sometimes > under the name rsh (colliding with the remote shell, which is called remsh > on such systems.) On FreeBSD, I think the (original) KornShell (ksh) > and GNU bash can be run in restricted mode. It disables cd, and some other > builtins but it of course does not restrict programs that got invoked > by the user, so you have to be selective about which programs the user > is allowed to run. vi(1) also can be run in restricted mode. > > > --mkb > > Thx for info. I'v checked ports collection and find those shells: flash - A ncurses-based restriction shell With best regards, Alexander To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020605161954.P42835-100000>