Security :: To Call Chroot Under Normal Unprevileged User ?
Mar 24, 2010
Its been two days over, after my search started . But I didn't find answer any where ?. I need to call chroot as part of normal user, but to my surprise it can only be called by SUper user with CAP_SYS_CHROOT capabilities. I am not sure how to add this capability to my user .
View 10 Replies
ADVERTISEMENT
Apr 2, 2010
I have one requirement i.e I want to call the java file from the php function using shell_exec command , i am using the chroot jail concept , if i using this command i am getting the empty file because java environment is outside the chroot jail,so how to access the the files those are out side the chroot jail.
View 3 Replies
View Related
Oct 15, 2010
One user in my company wants to run some flush cache queries on a MySql database, it needs "reload" privileges of Administration, how secure is to give this rights to a normal user ?
View 2 Replies
View Related
Jun 28, 2010
I installed SSH-keygen dependancies for a /chroot user.
I can now execute ssh-keygen from the /chroot user BUT I receive a message PRNG is not seeded.
When I do it from any of the users that are not /chroot users, it works fine.
View 2 Replies
View Related
Jul 3, 2010
I have a question that i want to make a normal user to execute the commands which the root user is able to execute, say if i have a user named siru and when i logged in using siru i cannot run commands like tracert,nmap@loccalhost and all but i can run when i have logged into root account so my question is how to make siru to run the command tracert,nmap@localhost.I have even edited the .bash_profile of siru's home directory from
# .bash_profile
# Get the aliases and functions
if [ -f ~/.bashrc ]; then
[code]...
View 1 Replies
View Related
May 22, 2011
love security/pentest tools. This script adds ALL the tools from the Security Spin, plus Metasploit. Feel free to modify it if need be.
View 12 Replies
View Related
May 30, 2010
Is it possible to install security lab menu on a normal Fedora 13 installation? I don't want to use security spin.
View 14 Replies
View Related
Mar 23, 2010
I'm attempting to give a few buddies encrypted storage space through sftp using truecrypt.I have it worked out to the point where the truecrypt volume is automatically mounted when the user logs on, and dismounted when they log off.I would like to restrict each person to their individual home folders. This way, I can control exactly how much space each user is able to use (through the size of the truecrypt volume), while maintaining security through the network due to using SFTP.
I've been looking around, and the only thing I can see is restricting a large group of users to a single directory, this won't work, I need each person to be locked down to their personal home directory.My end goal is to have these volumes "mountable" in Windows through the use of Windows network drives (on a wide network, not through samba on local), or by using expandrive or a similar program. how I can lock these users to their respective home folders?
View 9 Replies
View Related
Oct 22, 2010
Is there a way where i can chroot their user home directory, lets say the user login on linux box /home/user, what i wanted to do is to chroot /home/user where user won't be able to browse the filesystem which is /. Tnx
View 1 Replies
View Related
May 31, 2011
I am having an issue with a Chrooted SFTP User not being able to write files.
The permissions are setup correctly as if I remove the Chroot the user can write files correctly.
User has a transfer folder which they should be able to write files to and read from, this works correctly until I apply the snippet from sshd_config file below then the user can only read files. I have tried tweaking the permissions but this doesn't seem to have helped at all.code...
View 2 Replies
View Related
Oct 26, 2010
I was hoping to set up a Kubuntu 10.04 Chroot on a PC with no internet access (I only have dialup anyway, not Broadband). All the information I have been able to find refers to downloading debootstrap in order to do this.I purchased a set of DVDs with all of the Ubuntu packages on them and created a single repository of them on my harddrive.Is there some way that I can create the Chroot using the packages on my hard drive without having to access the internet to download stuff as I do it?
View 6 Replies
View Related
Jun 22, 2011
I've config vsftpd chroot mode follow:
Code:
Code:
View 4 Replies
View Related
May 26, 2011
I'd like to run a Tor relay, but am trying to understand the security implications. For some time I've run my torrent client in a VirtualBox virtual machine, which is run as a very non-prived user, bridges directly to The Internets, and writes to one directory on the host. My belief is this is about as secure as it can be, but am open to suggestion.If I run a relay in the VM it wouldn't be associated with my use of Tor as a client, which is fine since there is no technical need for them to be connected and it's desirable for security.I read that chroot jails can be broken, particularly when run as root, so I don't really trust that. Also studied a vserver, but it must share the network setup which doesn't strike me as isolated enough.
View 14 Replies
View Related
May 4, 2011
I want to make a sandbox for my music streaming server(subsonic). I was going to make a directory and chroot to it. I don't really have any room on my HD for new partitions. For the sandbox/chroot jail to be proper does it need to be on a seperate filesystem/mount point?
View 1 Replies
View Related
Jul 12, 2011
recently we decided to make our own panel (like Plesk or cPanel) but for Ubuntu and it will be licenced under GPL (like any other professional sofware).want to make a panel not only that fits our needs but also the needs of other system administrators and domain owners. We researched other panels and found out that non of them has security/look/ease of use in one package. Bad codig is another problem found in other panels.I made a short overwiev of what I think we have to have in the beginning.I Security :1. Completely chroot enviornoment where every single service is in chroot mode (bind,mysql, postfix, .... )2. Easily managed IPtables trough web-based interface. 3. Coding rules has to be strict.
II Software selection :
1. MTA - Postfix
2. POP - dovecot
[code]....
View 7 Replies
View Related
Apr 15, 2010
Is there any way to use 'fdisk -l' as a normal user? I see in F12, /sbin has been added to PATH by default for a normal user, but when trying to use it, nothing shows up.
See below for demonstration purposes:
Code:
Password:
I don't want to use 'su -' or 'su -c' and login every time.
View 6 Replies
View Related
Jun 11, 2010
Recently I noticed, that manpages are not available anymore for a normal user:
Code:
$ man grep
No manual entry for grep
See 'man 7 undocumented' for help when manual pages are not available.With root privileges everything works fine
View 2 Replies
View Related
Oct 1, 2010
As I get reply from antoher forum is best there on Ubuntu is better to have 2 user accounts - one is admin and other is normal user for surfing, and other things. But there is problem. How can I install applications on this normal user account?
And,.. is option for installed applications (on normal user acc.) is no visible or installed on admin account?
- Can I .reg file for program which is running on Wine, use for a program that I need to change settings in "registry"?
View 7 Replies
View Related
Jun 28, 2011
I just want to be able to access and modify the files on my usb drive as a normal user. The mount command works perfectly as root but then the files that I end up copying to my home folder can only be modified as root. I only use a window manager and use just bash for file management. I just want to be able to it through the command line.
(using 13.37)
View 14 Replies
View Related
Jul 30, 2009
Quote:
Originally Posted by G�del
It gets me within a mile
how i am auto mount the ntfs drives through the normal user with out asking password... I need it and also one thing is i want two drives only auto mount and when i open the other drives it should ask the password?...
View 1 Replies
View Related
Aug 29, 2011
I can switch to root by typing "su"After having done something, I hope to switch back to original normal user. What's the command,
View 3 Replies
View Related
May 19, 2010
I would like to allow normal users to run some root scripts (e.g the sound subsytem [alsa]) in cases sound is stuck. What is the best way to allow this to happen in opensuse? There are many ways to do that (and I do not know how to use any of them ) and I am not sure which one is more suse all right.
View 6 Replies
View Related
May 11, 2011
I can start libreoffice as root user, but can't start as normal user. Shows error, exception "user" like something, now even that also stopped coming.
View 4 Replies
View Related
Jan 31, 2010
I really can't mount my partitions as an normal user. I added umask and users option.
When I mount a partition i get no errors, but the directory is empty. I umounted first.
Here is my fstab:
Code: #
# /etc/fstab
# Created by anaconda on Sat Jan 30 18:30:30 2010
#
[Code]....
View 9 Replies
View Related
Jul 8, 2010
Using opensuse 11.1 64 bit with kde 4.1.3, apps like k3b, or any multimedia apps can not see the optical drives unless I run the apps as root. I also found that to run bladeenc, I have to do it in a root terminal. Is there a way to set permissions for the normal user? Firefox or any text editor work fine as normal user.
View 6 Replies
View Related
Nov 24, 2010
I am unable to mount my ext hdd as normal user ,i am using xfce Unable to mount "80G Volume":
Rejected send message, 1 matched rules; type="method_call", sender=":1.23" (uid=1000 pid=2776 comm="exo-mount) interface="org.freedesktop.Hal.Device.Volume" member="Mount" error name="(unset)" requested_reply=0 destination="org.freedesktop.Hal" (uid=0 pid=1908 comm="/usr/sbin/hald))
View 6 Replies
View Related
Feb 18, 2011
I have installed Oracle Database server in Red Hat Linux for the first time. I edited the .bash_profile first time & defined some parameters like "export ORACLE_SID =orcl".I quit the editing. Then When I entered ". .bash_profile" it got error " not a valid identifier" it shows like "bash: export: '=orcl' : not a valid identifier for all the lines I edited it shows same error beacause I think I put a space in between "ORACLE_SID" & "=orcl".
So when I tried to edit that using "vi .bash_profile" being a normal user. It doesn't allow me editing.when I try to delete that space (because I think I have got error) using Backspace key on my computer,,it just moves the cursor to left in stead of deleting that space.
View 5 Replies
View Related
Sep 16, 2009
I have just installed VirtualBox on my OpenSuSE 11.1 and created my first VM (Windows XP) - and everything works just fine, but.... I can only run it as user root (if I remember correctly I could only install VirtualBox as root)Anybody know what I need to do so that I can run VirtualBox under a normal user account.
View 2 Replies
View Related
Mar 11, 2010
Is there way we can restrict root to su to normal user. Or at least a way to prompt for the password when root tries to su <username>.
View 3 Replies
View Related
Aug 4, 2010
When I try to login root from my normal user, I can see this:
Code:
Cannot exec /usr/libexec/openssh/sftp-server: File or directory doesn't exist
(Translateted from my nativ language)
I think that is my bad shell configuration so I check file /etc/ssh/sshd_config and see in the end (this lines couse this bug):
Code:
Match User root
ChrootDirectory /home
AllowTCPForwarding no
X11Forwarding no
[Code].....
View 2 Replies
View Related