|
From: | Olivier Sessink |
Subject: | Re: [Jailkit-users] Setting up a chroot per user |
Date: | Fri, 21 Dec 2007 16:01:17 +0100 |
User-agent: | Icedove 1.5.0.12 (X11/20070607) |
Dan Rossi wrote:
Hi after finally getting in by manually changing the shell to bash, ive noticed the user is able to see other users home directories and gain access to it.
that has nothing to do with chroot, simply use unix permissions to do that. chmod go-rwx ~testuser
> I was able to from the users home directory cd ../ && cd
testuser2 . Isnt the whole point of chroot is to seperate each user and keep their environment from the root system ?
the point of chroot is to put one or more processes in a separate environment. If you put multiple users in the same chroot they are in the same environment. For many people this is OK, they use strict permissions on the home directories to keep them separated. For some people they want more, and they use separate jails for each user. jk_init can be used to automate the creation of jails.
regards, Olivier
[Prev in Thread] | Current Thread | [Next in Thread] |