This is the mail archive of the cygwin mailing list for the Cygwin project.

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]
Other format:	[Raw text]

Re: Cygwin SSHD server - Restricting User access to their home directory

From: Igor Pechtchanski <pechtcha at cs dot nyu dot edu>
To: Sameer Tupe <sameertupe at yahoo dot com>
Cc: cygwin at cygwin dot com
Date: Sat, 1 Jan 2005 13:30:15 -0500 (EST)
Subject: Re: Cygwin SSHD server - Restricting User access to their home directory
References: <1442622650.20050101172426@familiehaase.de>
Reply-to: cygwin at cygwin dot com

On Sat, 1 Jan 2005, Sameer Tupe wrote:

> Hi,
>      I am having SSHD running on my machine and i am using CORE FTP
> light to connect to my server. I am able to connect but problem here is
> after successful connect i can go to any place in C:\cygwin. Even guest
> login can access home/Administrator directory which is highly
> undesirable for me.
>
>      I want to restrict the access of my user to his local home
> directory and whatever symbolic links present in that should be allowed.
> Apart from symboloc link user should not be able to go out of his own
> home directory and in the worst case in other users home directory.
>
>      Can soemone help me.  I tried this on WinXp home edition.

First off, please take a look at the Cygwin problem reporting guidelines
at <http://cygwin.com/problems.html>, particularly the bit about attaching
(as an uncompressed text attachment) the output of "cygcheck -svr" on your
machine.

Secondly, you should be clearer about what you need done.  If you simply
want to make sure that the particular user can't access given directories,
change the access mode on those directories ("chmod o-rwx /home/Admin").
If you want the user to not be able to get out of their home directory at
all, you'll need to set up a chroot jail -- search the archives for
"chroot".
	Igor
P.S. Oh, and Happy New Year, everyone!
-- 
				http://cs.nyu.edu/~pechtcha/
      |\      _,,,---,,_		pechtcha@cs.nyu.edu
ZZZzz /,`.-'`'    -.  ;-;;,_		igor@watson.ibm.com
     |,4-  ) )-,_. ,\ (  `'-'		Igor Pechtchanski, Ph.D.
    '---''(_/--'  `-'\_) fL	a.k.a JaguaR-R-R-r-r-r-.-.-.  Meow!

"The Sun will pass between the Earth and the Moon tonight for a total
Lunar eclipse..." -- WCBS Radio Newsbrief, Oct 27 2004, 12:01 pm EDT

--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Problem reports:       http://cygwin.com/problems.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/

References:
- Cygwin SSHD server - Restricting User access to their home directory
  - From: Sameer Tupe

Index Nav:	[Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav:	[Date Prev] [Date Next]	[Thread Prev] [Thread Next]