Ubuntu :: Restricted SSH Access ?
Apr 14, 2010
I'm trying to lock down SSH for a particular user who wants to use my server for some development, so I'm making him a little play area.
Problem is I'm having difficulties locking the account down.
I've implemented bashrc which appears to be what I wanted at first, restricting the user to a user directory of my choice, but I now find that firstly the user can't use cd at all, not even cd to directories within the users home directory.
But also I've found bashrc to be pretty pointless security wise because I can just type sh and then do what ever the hell I want? Such as cd / and then ls and see everything on the server.
So I'm wondering if anyone has a solution to this for me?
I want the user to be able to make directories and cd into them in their own user area but not cd .. or / out of their user area.
View 3 Replies
ADVERTISEMENT
Jun 11, 2010
I'd like to be able to limit access to a particular website, based on the time of day. I would also like to be able to password protect this if possible.So for instance, from 7am until 10pm daily, I can access URL... but after 10pm it redirects to 127.0.0.1 or something. And this configuration be protected by only allowing a certain user (other than root) to change the config?
View 7 Replies
View Related
Apr 28, 2011
I just started using Linux, more specifically the Ubuntu distribution, earlier today. I am attempting, and failing, at setting up my wireless with a usb device. My device is on the list of those supported, and I am trying to install ndiswrapper so that I can use the windows drivers. My problem is, my access is restricted. I can not save to anywhere on my File System. Anyone know how to fix this problem?
View 2 Replies
View Related
Nov 19, 2010
I want to setup samba on Maverick. This is the case. I have 2 folders want to be shared, freeaccess and restrictedaccess. The freeaccess folder can be accessed by everyone on network. The restritedaccess folder can only be accessed with account named someone. What I want to ask is, how to setup samba that can solve that case...??
View 9 Replies
View Related
Apr 21, 2011
I want to configure a remote internet facing server as git server. I would like to restrict access to the server to a few systems (access is restricted to select computers, not users). I first thought of using ssh key, but the key can be copied to another system hence that alone is not sufficient. I am having a dynamic IP, so simple IP based firewall blocking is also not possible. I was thinking about the possibility of using both SSH Key and IP based access. Is it possible to update the firewall rule whenever my ip gets changed?
View 6 Replies
View Related
Dec 13, 2010
In CGI scripts, there are certain files that are getting "permission denied" when it seems they should be accessible by the apache user. I am running the default package install of apache under fedora. Here is an example:The following is /var/www/cgi-bin/test.pl
Code:
#!/usr/bin/perl
use strict;
[code]...
View 9 Replies
View Related
Jan 24, 2011
My home directory's permissions allow only myself access to it. Is it possible to put a file inside my home directory with.. say.. full permissions, and create a symlink to it so other users can access that file alone inside my home folder? System is Ubuntu Karmic.
View 2 Replies
View Related
May 15, 2011
a friend of mine is doing a small website-project in school (group of ~6 people). They want to use git as VCS and need acces to a server. I have an account on the server from university, but - of course - no root access.
I could create private/public keys for them, to SSH into my account, but I don't want them to have this power I found 'git-shell', which seems to be used for restricted access with git (although I'm not sure whether I understood the functionality).
My question is: Is it possible to configure SSH keys in that way, that the server runs them (and only them) in git-shell in a specified directory (using ~/.ssh/{config,authorized_keys})?
So that they can
- log in with their SSH key
- use git, execute scripts etc.
- use git push/pull from their private+school PC
- work only in a specific directory (like chroot) eg. ~/web-project/
[Code]...
View 2 Replies
View Related
Dec 27, 2009
I've lasted a lot longer than usual before resorting to asking around, but I've finally gone delightfully mad. I've been trying to access shares based on Windows 7 Ultimate with limited user access on said shares. I've managed to get into my XP machine, another mate's Vista machine and various Linux boxes with no issues, but that's only for shares that are accessible by everyone. The moment I try to get into a share that requires user credentials, I get "Error returning browse list: NT_STATUS_ACCESS_DENIED".If I try to access restricted shares (be it machine or folder) through Nautilus, I will get a user logon prompt, but it fails. Using smbclient results in just as little success, and now I'm munching through O'Reiley's Samba manual from '99, after realising that I need to basically learn Samba in its entirety to have a hope in hell at getting this to work. The trouble is though, every HOWTO and relevant forum post I get my hands on all seem to concentrate more on the server side of things, and usually servering from a linux box, not the other way around as I'm trying to.
The above Windows 7 machine won't even allow me to view its share contents, whereas the XP machine previously will allow me to browse, but won't allow me to access folders with restricted access. I'm pretty sure there aren't any major issues with the way the Windows 7 machine is setup, as it can be accessed with logon from my Xbox, Ubuntu machine, XP and Vista, with only Fedora having problems getting in as it constantly fails logon. What I'm trying to establish is, if Ubuntu can get in, is there something in my Fedora samba config I'm missing that's preventing me access? My thanks in advance to those of you who've been able to put up with me rambling.
View 8 Replies
View Related
May 6, 2010
I am trying to give some one on internet access to one specific IP on my machine which is on LAN behind a Bastion host and the authentication should not be twice only one time. So I am trying to have some thing that runs on my bastion host or you can call it as a gateway and it redirects the incoming SSH to a machine on LAN but it should not be a two times authentication only once. The user should not know that they first logged in to bastion host and then they are redirected to some other IP on LAN.This using a web interface so that if they are behind some proxy or firewall they do not need to bother at least they always have http access.My gateway has public IP but only port 22 is opened by ISP .Is there any software or mechanism to do so I came across one [URL]..
View 1 Replies
View Related
Jan 6, 2010
I was having trouble with a .deb package unpacking issue. I did the magical restart and now my new video card is working, but I have a "new restricted driver in use" icon in my bar.
View 5 Replies
View Related
Apr 30, 2010
The official repos are slow as hell at the moment, is there anywhere we can download the Restricted Extras from?A .deb would be ideal.
View 1 Replies
View Related
Jul 15, 2011
I have recently started using Ubuntu again(used it before) and I have an ATI card, and as many of you probably know, it's impossible to play minecraft with ATI's proprietary driver, so I need the X.org ATI driver.The problem is, it's from the restricted souce, I have gone into the software sources manager and enabled the restricted sources and stuff, but when I go to install it, it just gives me the same"Available from the "restricted" source" message, and has an update button, I click the update button, and it does nothing
View 2 Replies
View Related
Jan 27, 2010
Ubuntu Restricted Extras affects the screen resolution on login and with each new reboot.
I have to log out and in again to restore 1024x768 to get out of 800x400
I need the Restricted Extras to play DVDs so uninstalling it solves the resolution issue but leaves me unable to play DVDs.
View 2 Replies
View Related
Feb 10, 2010
It's my CPU scaling and dual mode modem that aren't initializing properly on startup. The CPU scaling starts up in 'performance' mode and doesn't throttle back to 'on demand' like it should, and like it used to. Also the modem starts up as a usb mass storage device and the boot process should, and used to, toggle it into modem mode.
It certainly looks like it is a user rights issue as both devices require me to sudo the change from userspace. I'm on 9.10 64bit with a fairly new install, I havent done anything abnormal to the system except change the default lang from UTF-8 to ISO-8859. other than that I've only installed packages from synaptic, and done the recommended updates. I don't know exactly where the problem started.
I'm a noobee at reading log files. I generally only get about a half a screenfull read before I realize my eyes are crossing and my brain has gone completely non-functional. Here is the output from dmesg... Very near the end I see it recognize the Cricket(modem) device, but I see no errors...
Code:
[ 0.000000] Initializing cgroup subsys cpuset
[ 0.000000] Initializing cgroup subsys cpu
[ 0.000000] Linux version 2.6.31-19-generic (buildd@crested) (gcc version 4.4.1 (Ubuntu 4.4.1-4ubuntu8) ) #56-Ubuntu SMP Thu Jan 28 02:39:34 UTC 2010 (Ubuntu
[code]....
View 1 Replies
View Related
Feb 20, 2010
due to a crash on window's part my computer crashed and I decided to install the latest version of Ubuntu. (9.10) However as it happened, it was actually incompatible with the usb on my computer an Acer AM5641 desktop. So I opted for 8.10 which works like a charm except for the fact that the restricted drivers for my graphics card (an Nvidia 7900 GS that I installed) don't work. After clicking "enable driver" everything appears to go as normal. Except for the fact that when I restart it, it automatically goes into safe mode, and i can't save it at a higher resolution than 800x600.
View 1 Replies
View Related
Mar 1, 2010
I reinstalled ubuntu and now there isn't a box that pops up saying "restricted drivers" where my wireless would pop up saying something like Broadcom STA wireless driver. and Broadcom BZ3 wireless driver (or something like that) I would then click STA wireless driver and click "activate" then it would make my wireless card work.
Why isnt this box popping up? how do I get to it?
View 4 Replies
View Related
Mar 19, 2010
How can I remove ubuntu restricted extras deb file, where is it loctaed?
View 4 Replies
View Related
Apr 17, 2010
I have libdvdcss, libdvdread (i think it was called), and restricted extras - i even followed the instructions on the documentation. they still wont play. I run 9.10 64bit on my laptop, and 10.04 on my desktop.
View 9 Replies
View Related
Apr 29, 2010
Fresh Install of lucid today,everything went fine. Installed compiz, fine, now I'm downloading the restricted extras through synaptic and wow, its going 10 to 20 kB/s. Tried downloading a file from cnet, no problem. 800+ kB/s. Think this is just related to heavy volume today?
View 4 Replies
View Related
May 5, 2010
I have a computer which has a public IP.My ISP has allowed only port 22 for my machine to be accessed outside from internet.I want rest of my computers which are connected to this machine be accessible via SSH on internet.I can configure IPTABLES to route different ports to internal machines but since ISP has given only one port for the gateway how can I go for it any guesses.I came across some thing reverse SSH tunneling but that has to keep the connection alive all the time at gateway I want my trusted people to be directly able to access the machines on LAN to which they have account to login in this scenario.
View 9 Replies
View Related
May 18, 2010
I have been using EnvyNG for my nvidia 9600 for a few ubuntu versions now, but cant find envy after doing a clean install of lucid. When I installed lucid and added the sources, Envy is not there. Does this mean envy no longer used, or is not updated for lucid?
Is my only option for OpenGl to use restricted drivers? I think the restricted drivers are causing me some grief with compiz & emerald. I frequently lose emerald, & have to reload the windows manager. I rarely saw these issues with karmic or jaunty.
View 4 Replies
View Related
Jul 19, 2010
I have a very annoying problem with my Lucid (installed with ubuntustudio's alternate dvd). Two out of four times when I log in my account has some restrictions. I can't mount devices on nautilus and the shutdown button won't be displayed. If I log out and log in I see the restrictions again. Only restarting (with "sudo shutdown -r now" or so) may give me a normal session. On the console works everything normal. I mean i can sudo with my password.
View 2 Replies
View Related
Sep 9, 2010
I backed up my information from 10.4 to an external hard drive before I switched to pinguy using sbackup. Once I installed pinguy, I made sure to download sbackup and hit restore. So far, all fine and dandy, except when it restored my information, it extracted all the information to a new folder in /home, which is root-restricted, so I can't even access it normally. I got annoyed, and just manually extracted the music and documents (which were the only things I really cared about anyway), and now I'd like to delete the 15 or so gigabytes just sitting on my computer, taking up space. The folder being root, I couldn't just drag it to the wastebasket. so I started terminal, entered root, typed rm /home/tmpuWiQlI (the folder in question), only to be told it's a directory and can't delete it! What gives?
View 5 Replies
View Related
Nov 12, 2010
I tried to install them through the software center first. It would show "in progress" on the left hand side for a couple seconds and then it would go away, but the formats did not install. next I found a command to copy and paste, but it didn't work either
Quote:
mike@mike-MacBook:~$ $ wget -c http://archive.ubuntu.com/ubuntu/poo...untu3_i386.deb
$: command not found
mike@mike-MacBook:~$
mike@mike-MacBook:~$ wget -c http://archive.ubuntu.com/ubuntu/poo...buntu4_all.deb
--2010-11-13 05:54:17-- http://archive.ubuntu.com/ubuntu/poo...buntu4_all.deb
Resolving archive.ubuntu.com... 91.189.88.40, 91.189.88.45, 91.189.88.46, ...
Connecting to archive.ubuntu.com|91.189.88.40|:80... connected.
[Code]...
edit: it appears that this problem applies to more than just the restricted formats... I just tried to download chess and it didn't work either. the window flickered for a second after the "in progress" went away, then nothing happened.
View 4 Replies
View Related
Jan 24, 2011
first, here is our setup:
Linksys Router with firewall
1 Linux Server -- Running Dapper
Multiple Linux ThinClients running off the linux server
Multiple Freestanding Linux Machines -- Running ubuntu variants
Multiple Freestanding Windows Machines -- Running windows variants
The issue is that certain websites will not load on the freestanding linux machines, but they will load on our linux server and all the windows machines. examples: [URL].. These sites will start to load, but they never really finish and just seem to time out. I have tried changing the dns on the freestanding linux laptops to use 208.67.220.220 and this does not solve the problem.
I have checked the firewall rules and they seem pretty standard.when the linux machines are used on other networks, these websites work, so the problem seems to be related to this particular network.
When I do (freestanding linux):
Code:
traceroute acer.com -I
The trace times out at 30 hops
When I do (linux server):
Code:
traceroute acer.com -I
The trace reaches the destination at 19 hops
Both of the traceroute requests start by going through the router. So the big issue is that websites will load on our linux server and all our windows machines, but not on freestanding linux clients.
View 4 Replies
View Related
Feb 10, 2011
How can I know whether using restricted-extras is legal in my country?
View 6 Replies
View Related
Jun 5, 2011
I would like to find out if any of the packages installed on my system are from the restricted repository. I would like to get rid of all of them if possible. Does anyone know how I could find out? I am running Ubuntu 11.04
View 1 Replies
View Related
Mar 29, 2010
I have just installed ubuntu 10.04. How do I install encoders for window audio media files? I had them installed on 9.04 but that was over a year ago. I seem to have forgoten.*
View 5 Replies
View Related
Jan 21, 2010
I installed the newest restricted driver for my gts8800 nvidia card in an attempt to get starcraft b.net to work. Come to find out this has been a long standing bug with the menus not redrawing properly. My question is, now that I've installed the restricted driver 188, how do I go back to an open source one?
View 1 Replies
View Related
