CentOS 5 Server :: User Limit Access To One Folder
Mar 24, 2011for create an user I put:
useradd username
passwd username
for create an user I put:
useradd username
passwd username
What is the command I need to create a new user and give the user only permission to a single folder via ftp?
View 3 Replies View RelatedI have a VPS server with 512 MB memory. The php.ini is set so script memory limit = 16 MB. However, I have noticed in my top report, instances like the following:
Quote:
5484 coldclim 25 0 46476 32m 5920 R 0.0 6.4 0:00.93 php
The bold number of 6.4 is the % of sever memory this process is using. 6.4 % of 512 MB of memory is about 32 MB of memory, so it appears that this isn't being limited by php.ini. Am I correct? This leads to the next question: Is there some way to limit the amount of memory a single suphp process can use? (Basically, something like the setting in php.ini which limits suphp processes in the same way.)
i have a linux server which users connect to with SSH. my users only upload and download content from their /home folder.
Basicly, I want them to be limited to see and use only their home folder.
I read that it might not be a good idea to do so, since they nead read premissions to run programs and scripts, but again: they are only downloadinguploading content to their home dir.
How can I do it?
Limit every user to his own home folder only.I have a web server running 10.04 LTS and as a newbie in the world of server administration, I'm in a bind.Right now, I have three users. Root, which obviously has access to everything, and two other users that each own a website.For these two users, their website is located in their respective home folder in an extra folder they each have Read, Write & Execute permissions on. This is the only folder they can write to. They cannot delete it, or change anything outside the folder.
So far so good, except that by default, they can also read any file in the system, meaning they can navigate to my other websites' folders and read, for instance, the database passwords from WordPress config files.This is obviously problematic.The users access their files and folders through SSH with FileZilla.
How can I prevent these users from reading sensitive data, i.e. how can I restrict their access to only their home folder?The users must continue to login through SSH with FileZilla (i.e. no FTP solutions)Apache must still be able to access the user's folders (i.e. cannot chmod to 750)Folder containing the command line tools (/bin/bash I think) will probably have to be symlinked in the user's home folder?
I am a user of a cluster. I don't want root to see/copy files from my user account(obviously). Is that possible to limit the access of root to users account?
View 14 Replies View Related'm a bit familiar with Centos as I have set up few website on this environment but I have never actually installed, and especially, configure ftp server. Now I need to do this. Simply I need to be able to create an access account for a user and then restrict access to only one folder within the website (idea is to allow this user to upload images via ftp). I did google for ftp servers and read about vsftpd but I couldn't find any tutorial on how exactly make it work with folders and specific users.
View 3 Replies View RelatedI'm trying to determine how to limit a specific user so that they are confined within their home. I'm also trying to figure out how to prevent a specific user from walking up to the computer and allowing them to log in, but still allow SSH. Basically I'm trying to provide an account with very limited access to the machine.
View 3 Replies View RelatedI Have Configure Samba server in Centos, I need give permission like for some user(5User) can able to read and write the particular folder, and again i need give some another user(6user) can only read permission for same folder.
View 1 Replies View RelatedIs it possible to limit each user so that only one can connect via each username for ssh/sftp? I work with a small company where there aren't really enough of us to justify using a revision control system, but we don't want to accidentally step on each other's toes, so we'd like to try simply preventing more than one person from accessing a given domain at once.
View 15 Replies View RelatedI would like to configure an access to folder
/fileserver
for two services : Samba and VSFTPD
How to do it ? How to create folder rights that samba and ftp user will have an access (read/write/delete) to all directories in /fileserver.
My system is CentOS. I`m starting samba and vsftpd like a root (/etc/init.d/vsftpd start etc.)
I have some domains on a VPS server. Typical account memory usage for all domains runs at 50% of available, but I have a problem. One domain is causing me trouble because intermittently traffic will spike on that domain, causing so many requests within 1 min that I exceed my memory allocation for my entire VPS package. Apache is then killed but the virtualization software and Apache must then be restarted.
A sample snippet from tops right before the sever went down would like like this:
All of that memory usage adds up. I would like to "throttle" the number of processes that user/domain can run. I think this would be a quick and easy way to keep the domain from taking down my entire VPS. My understanding is that I could do this with the /etc/security/limits.conf file.
Is that correct?
I have never done this before. Do I want to set a hard or soft limit? I think if I wanted to limit the number of processes for "coldclim" to 15 I would add a line to limits.conf like this:
Code:
Assuming that is correct, can anyone tell me how the website would respond once it reached its limit? Would visitor queries become sluggish, or would the website not come up for them at all?
I ran into a user today that indicated that their company only allows them to log in through a terminal session once (no multiple logins). On second try their login window terminates. They are using putty.Is this being accomplished through PAM or sshd ( or some other method)?
View 1 Replies View RelatedI have a webserver with a few users on and i wonder how i can limit the bandwith usage for each user on my server ?
View 1 Replies View RelatedHow can i limit user to their mailbox in specific size.
View 2 Replies View Relatedi have VPS server and i installed Xserver on it and all ok i created new user for my client but i need to limit his access to the following
he can download and upload to his home file " browser by Firefox"
he can't install or use any application "just the one i installed it"
he can't see the file system or browser it !! if i can give him specific space on harddisk would be better
he can extract and compress files
he can't edit the settings ....
i have another sensitive folder and setting i don't want him to see it so how to limit his access?
recently i rent a xen vps intended to setup a PPTPD vpn server for me and my friends. so we can by-pass the great firewall in china and get back on ....., facebook and stuff. i have already setup the server and i can connect to it without any problem. but i still want to do some further configuration the server:
1. i want to limit the bandwidth to 400k/s per connection.
2. i also want to limit the max connection per user a/c
i have some thoughts on the 2nd requirement. in the user configuration file of /etc/ppp/chap-secret, you can specify the range of ip the user can get, does it limit the max connection per user a/c? or they can connect anyway, just every now and then a box pop up says conflict in IP address?
Last weekend i have increased the open file size (ulimit -n) for the application user id i have update the limits.conf file with necessary inputs restarted the service and the server as well, when i check the ulimit value for the specific user by switching user from other user it shows the new value (10240) but if i login directly using the application id the ulimit value shows as 1024 which one is the default one.
View 6 Replies View RelatedI'm thinking about some ways to limit access to my web-server. It runs Nginx and php in FCGI. The server contains a large amount of information. The data is freely available and no authentication is required but other companies might like to mirror it and use on their own servers.
The requests could be limited on different levels: IP, TCP, HTTP (by nginx) or by the php application. I found some solutions (like Nginx's limit_req_zone directive), but they do not solve the second part of the problem: there's no way to define a whitelist of clients who are allowed to use the data.
I thought about an intellectual firewall that would limit the requests on IP basis, but I'm yet to find such device. Another way was to hack some scripts that would parse the log file every minute and modify the iptables to ban suspicious IPs. It would take days and I doubt this system will survive, say, 1000 requests per second.
Perhaps, some HTTP proxy, like Squid, could do this?
I'm trying to limit access to port 8443 on our server to 2 specific IP addresses. For some reason, access is still being allowed even though I drop all packets that aren't from the named IP addresses. The default policy is ACCEPT on the INPUT chain and this is how we want to keep it for various reasons I wont get into here. Here's the output from iptables -vnL
[Code]...
Note the actual IP we are using is masked here with 123.123.123.123. Until I can get everything working properly, we're only allowing access from 1 IP instead of 2. We can add the other one once it all works right. I haven't worked with iptables very much. So I'm quite confused about why packets matching the DROP criteria are still being allowed.
Code:
cat /etc/group | grep www-data | grep chad
chad:x:1000:www-data
the user www-data should have read access to my folder but i am still getting a 403 forbidden error i have done this before without issue anyone see what is wrong? i have a folder i use for file transfers over IM it is more reliable than the messengers file transfer abilities
I am trying to configure linux printer Server.
Setup : Using Centos 5.3
Printer : hp 4350
At present we are using windows print server getting user name and authenticated from domain server. I need your suggestion to configure linux printer server and how to share the printer to users and how to limit the user in taking printouts.
Code...
The server is running under debian sid and the client under fedora 13 beta. I don't have any idea what may be wrong.. selinux perhaps?
I have created vsftp server with grop of users and they can access only to /home/ftp-folder file which i made for them..nw if i apply read rite privilages to this folder then these previlages get by users in the group obvious...bt wot i want z if i creat a folder in /home directory i.e /home/test and i want the particular user in the group can have 777 access and other users in the grop coud nt access that folder..
how to do it...
I'm a new user for oracle,tried to install oracle 10g on redhat linux 5 but gettinh the same error message. response/ runInstaller [oracle2@localhost database_10201]$ sh runInstaller_runInstaller: line 54: /tmp/database_10201/install/.oui: Permission denied_
how to give full set of permisions to an user in linux to access a folder?
I use CentOS 5.3 and trying to change limit of max. open files.I added in /etc/security/limits.conf
root soft nofile 50000
root hard nofile 50000
I just want to place upload/download limit to each ip address ( say 20MB per day for each ip or specific ip) using squid proxy i tried through delay pool but it control only download/upload speed not place any download/upload quota restriction. following are my codes I have 1Mbps line
delay_pools 2
delay_class 1 2
# here 700kbps(87Kbytes) Net-Total usage limit, with 50Kbytes per user
[code]...
I also used
"reply_body_max_size" parameter to control upload limit.
But
"request_body_max_size" only restrict download based on size.
how to setup quota ( download quota per day per ip)
I'm trying to get vsftpd running with both anonymous and local user access to the same folder. The directory I'm using is /tftp with the following permissions:
dr-srwxrwx 7 root root 12288 2009-08-14 15:54 tftp
My vsftpd.conf is this:
anonymous_enable=YES
local_enable=YES
write_enable=YES
[code]....
I set the default "ftp" user's home directory to /tftp (was /var/ftp).
I want to share files over the web with only a few people and limiting them to certain folders. I have been doing a remote access (ssh) to my server to access it from a pc on the local network. I later found out the same program doing ssh (open_ssh) was also doing sftp, great I could do both with one system account. Problem I couldn't find away to configure another user to go over the web with limited folder access without messing up my user to access the pc. I tried ftps by using vsftpd, I couldn't get chroot set up correctly or even log in. So my question is what program and/or protocol should I use to do secure ftp over the web?
OS: Ubuntu 64bit 10.04
I have big folder I want to send it to my friend because it is over 20MB I can't send it by email so I want to put it on my website in a folder any time he wants to access it he should put uer name and passwod.I am completly new in that kind of stuff please let me know if any one know how to do it.
View 3 Replies View Related