Is it possible to have a user in Ubuntu/Debian that does not have access to synaptic, apt-get, dpkg and cannot even download anything from the Web, but has root privileges otherwise?
Original post (above translated by aimar) code...
Because I was browsing around in KDE and found out that I can view other users files and they can view mine.
View 1 Replies View Relatedi would like to prevent all users other than the user "parker" on my system from using the su or sudo commands. I have not attempted to modify the sudoers file so it just contains the standard root ALL = (ALL) ALL.
View 5 Replies View RelatedIf there is a simple way to prevent accidental shutdown when the following situation occurs:
Sometimes, I log in on my father's computer to run some administrations' tasks (updates...). For that, I use SSH since I'm frequently far from my parents and what I want is to prevent a shutdown run by my father. Of course, he should be able to turn off by himself if nobody else is connected.
Molly-Guard allows to prevent distant shutdown, my request is a kind of complementary software.
Does anyone know a project which could fit with this request? Do you have simple ideas to write a short code I know bash, perl, python...
How to access Windows volumes from non-root users?
View 4 Replies View Relatedas we know in windows xp drive and folder permissions, we perform (folder-right click-properties-security tab-we check, group or user and assign ALLOW or DENY access to the folders) In the same way i want to DENY access to my windows driver sda1 & sda2 from the Debian OS. my system is being used by 3 users: user1, user2 & user3. All can access to all Volumes, so I want to Deny the users 2 & 3 from accessing my windows driver and folders. BUT i alone user 1 should have permission to access them. How do i change that in Debian 5.5? Allow/Deny Permissions to Volumes.
View 3 Replies View RelatedI have a box with multiple users on it and I want everyone to be able to have full access to their home folders, but not be able to see the contents of /home/ or another user's home folder (I.E. bob has full access to /home/bob but cannot access or even see the contents of /home/john)Right now users can see other user's home folders but can't modify what's inside. How do I prevent them from seeing the contents at all?
View 1 Replies View RelatedWhat is the best way to prevent some user run some command? For example every body can run at and batch command and 3 or 4 special users prevent run these command?
View 7 Replies View RelatedIn Linux, how do i prevent users from executing chown, chgrp or chmod?
View 2 Replies View RelatedI'm running Apache2 and PHP5, hosting multiple virtual domains on my server. The directories of the domains (/var/www/<domain>) aren't publicly readable, so the websites can't access each others content as the scripts are run using different user accounts. They can, however, access other folders on the system that have public access for any user. I tried using the following PHP code, which listed the filesystem root:
Quote:
<?php
$handle=opendir("../../../..");
while($file=readdir($handle)){
echo $file . "<br/>";
}
?>
I will be hosting sites for other people so I don't want them to be able to access my entire server with PHP. Is there any way i can do this?
I have a Windows share on my network and I protected it with a password. I access it with my Ubuntu desktop, and I saved my password the first time I accessed it. The password is saved in Seahorse (the keyring), but each time I try to access my Windows share, I have to type in my keyring password.Despite trying several tutos, I haven't been able to prevent keyring from asking for my keyring password.
View 9 Replies View RelatedI use the following method for preventing the users from changing their passwords , is there any other method other than this ?
ls -l /usr/bin/passwd
-rwsr-xr-x 1 root root 37140 2010-01-26 12:09 /usr/bin/passwd
so we need to remove the suid for that command as follows :- chmod u-s /usr/bin/passwd now normal users won't be able to change their own passwords - and only the root user will be able to do it for them.
I am administrating a system with about 40 or 50 users, and we recently jumped ship from windows to ubuntu. Most of my users are getting along fine, but it seems every few days, i have to help someone who accidentally changed something, and now their account (or more rarely, the machine) is unusable, and has to be reset.
I know configuring /etc/sudoers is a huge step toward fixing my problem, but that still will not completely solve it. What I would like to do is prevent users from making ANY changes to the system (aside from their work files and the like), including themes, icons, desktop, background, etc.
I have a box with about 30-40 users on it, and I need to prevent a certain group of users from using sudo at all. Is this even possible.
View 4 Replies View RelatedI have Redhat enterprise linux 4 and it is used for squid. This machine is behind the Cisco PIX Firewall and it is handled by our network administrator. few days ago, my boss ordered me to allow Mail (Yahoo, Hotmail, G-Mail) only to some users and block every things for them. Here also, some other users (not above) have allowed downloading, movies etc and some users have not. I did it in squid as follow for users who required mail access only:-
[Code]....
I use the following method for preventing the users from changing their passwords , is there any other method other than this ?ls -l /usr/bin/passwd-rwsr-xr-x 1 root root 37140 2010-01-26 12:09 /usr/bin/passwdso we need to remove the suid for that command as follows :- chmod u-s /usr/bin/passwdnow normal users won't be able to change their own passwords - and only the root user will be able to do it for them.
View 9 Replies View RelatedHow can I prevent users from changing their own password? I was surprisingly unsuccessfull in finding a solution for this on google. Lots of stuff about hardening ssh access or dealing with password aging using "chage" but nowhere could I find an answer for my question.
View 5 Replies View RelatedI'm looking for a manner to prevent users from changing the desktop background/wallpaper and all other gnome configuration with booth Ubuntu and Kubuntu. This too (Abraxis, some years ago, have same my problem) [URL] do not solve the problem, for example if I change whit chown (*) own and group of this file to root /.gconf/desktop/gnome/background/%gconf.xml, at the next reboot file return in the previous state. (I don't like Pessulus).
(*)
chown root:root %gconf.xml
chmod 644 %gconf.xml
At the reboot file change automatically owner to "student", I don't know why?
The title says it; I want to prevent users from viewing the wireless network password.
View 9 Replies View RelatedI have a created a wireless connection from the main admin account and checked the box saying "Available to all users", everything is working correctly. I only need to prevent the Desktop Users from switching the connection to another one.
View 4 Replies View RelatedI've a Linux box with few users (with shell). I would like to prevent normal users see all the processes running on the box. How can I implement this?
View 1 Replies View RelatedIs it possible to restrict users with 'sudo' from accessing certain directories? Rather than just exclude cd and ls from the sudo privileges, that is.
View 5 Replies View RelatedWhen you guys su or su -l in a X terminal as another user and/or root, do your user get a ~/.xauthXXXXXX with the magic cookie of the display owner, which allows him/her to start a GUI application? ... or is that just me? If not, under which environment (KDE, Gnome, etc) and how do you start X then?
View 1 Replies View RelatedI've got a lamp solution deployed that I didn't write but I do have root access to the server. What might be the best way to determine the number of concurrent users accessing this web app throughout the day?
View 2 Replies View Relatedhow the file is generated or what it contains is not important at this point.The important question is how to prevent the file from being downloaded and its contents from being displayed in the browser window?Since it is not recognized by the web browser so it is downloaded on the system. That way, what the script does is exposed to the outside world.Okay, I usually keep such scripts in../cgi-bin/. But for files (text files, in the example) which are being uploaded by a user should not be downloaded by another user.
View 10 Replies View Related'readonly HISTFILE'
but the user could tamper with the histfile itself. Like:
rm -f $HISTFILE;
rm -f $HISTFILE; mkdir $HISTFILE;
rm -f $HISTFILE; ln -s /dev/null $HISTFILE;
I'm experimenting with PROMPT_COMMAND to execute a command each time the user executes a command and so log it somewhere else.This post was pruned from the 2009 Is there a way to prevent users from changing or unset their HISTFILE variable? thread. Please do not resurrect old threads but instead create your own (and maybe provide a link to the old one).
I currently have samba setup and connecting. What I am trying to do is have multiple users with access to different directories. For example , let's say there are folders A B C on my Linux machine. I want one guy to see A and C and another guy to see B and C and a third guy to see them all. But I want each user to have access to change delete or execute the files within these directories that they have access to
View 4 Replies View RelatedI've just added my wife as a seperate user on my desktop and have a question about shared network folders. So /etc/fstab mounts network folders from a second computer and until today I've mounted them to /home/David/NetworkData
This of course means that when my wife logs in she won't see them since they're not mounted to her home folder. So what folder should I use and what tricks so that we both have it visible and accessible in Places from the top menu?
I'd like to restricting my ftp users to access 1 particular folder.
we have a root folder called /home everyone has aces to that so they can operate.
but then there is /home/config how can i restrict certain users from access /config folder, since this is containing sensitive files I would like for no one else but my self to be able to access it.
i want to run a stable service for downloading file in fedora 14 in a network with 800 users. i want to whole of users can connect to server and download my files.
View 8 Replies View Related