Ubuntu Servers :: Access Restricted To Select Computers Not Users

Apr 21, 2011

I want to configure a remote internet facing server as git server. I would like to restrict access to the server to a few systems (access is restricted to select computers, not users). I first thought of using ssh key, but the key can be copied to another system hence that alone is not sufficient. I am having a dynamic IP, so simple IP based firewall blocking is also not possible. I was thinking about the possibility of using both SSH Key and IP based access. Is it possible to update the firewall rule whenever my ip gets changed?

View 6 Replies


ADVERTISEMENT

Ubuntu Servers :: Provide Internet Access To Multiple Computers Using Only A Hub And 1 Ethernet Port

Mar 18, 2010

Ever need to provide access to multiple PC's and did not have a router only a hub. Maybe this isn't original thinking, but then again maybe you didn't think of doing it this way (which i am sure there are many ways to do it) So I have 2 Ubuntu Servers, 1 Windows Box and a Hub - All 3 with internet access off of single ip and single Ethernet port.

While searching for a backup method today I came across Clonezilla. I was wondering if this was the right thing for me and since I needed to backup my roommates PC for a reformat and install of Windows I decided I would give it a try, but only if it would work. I didn't want the hassle of going into the main part of the house and finding out what cord was what as there is a cable modem connected into a switch (4 static IP's with internet) and one port of the switch hooked to a router) Anyways, didn't work he was on the router I was on the switch)

But this got me thinking. When I setup my server to do this, during one of the setup scripts it said it was setting up Internet access for client machines and that it was assigning them IP addresses threw a DHCP server that it had installed.

So, I dug up the hub connected the internet cable to hub up link and Server 1 on port 1 Server 2 on port 2 and Windows on port 3 The main server gets the internet provided IP address and routes it to the hub via a virtual interface. Server 2 is configured for DHCP and the windows box, It was set to get info automatically but it didn't fill the DNS info so I had to manually do that (just a heads up) I decided to use OpenDNS Servers (208.67.222.222 & 208.67.220.220) but im sure putting in the gateway IP address would have worked too.

So, by now if you need this I am sure you are excited and want to get to it. Like i said there are probably other ways of doing it, ways that don't involve you installing clonezilla and DRBL, maybe even just DRBL is needed, maybe one of them installed whats needed as a dependency- all I know is it works, if you know - elaborate so people know, but hey- this way not only do you have internet access on all PC's you can deploy custom images to them as well.

View 1 Replies View Related

Ubuntu Servers :: Recommended Way To Set Up FTP Users That Access Same Files?

Mar 23, 2010

I have a server setup with all my web development stuff in /var/www and in several sub-folders within that. (each project having it's own folder)It works great with one FTP account. But recently I've been getting help on a projects from a buddy of mine that freelances, and have made him an FTP user account as well. All is fine, except for when he tries to edit a file and gets a permissions error.

Here's the issue, I don't want us to have the same FTP login, but all the files are currently owned by my user name. So, when he logs in to edit a file, he can't because I'm the owner, and the files are set to 744. Will I cause any harm by adding both users to the same group (www-data) and chmod'ing the files to 775 so that we can both access and modify the files?

View 2 Replies View Related

Ubuntu Servers :: FTP Users Can Access Enitre Disk?

Apr 19, 2010

Quick question - I would like to know how to prevent users from accessing directories above the directory used for ftp. I'm running proftpd and I'm able to connect outside of my LAN, however all user accounts can click "Up to higher level directoy" and access everything, all the way up to the root directory. How can I make this unaccessable/not visible to users connecting to my server, allowing access only to the directories and subdirectories I have specified?

View 2 Replies View Related

Ubuntu Servers :: Win 7 Users Won't Be Able To Authenticate Unless Access Using IP Address

Sep 22, 2010

I've got a Samba server (CentOS)(I swear all my non-work boxes are Ubuntu) that has been working fine in our Active Directory environment for a long time, now that Windows 7 has been forced upon us, we've noticed that Win 7 users aren't able to authenticate to this server unless they access it using the IP address, e.g. \192.168.1.22. We've tried the different Windows 7 registry hacks and nothing makes a difference. We were advised to update Samba and we did to 3.3.8. However, this being a virtual machine, upgrading a clone of this machine did work, the configuration was identical, except the hostname

View 9 Replies View Related

Debian :: Adding New Users Restricted To Root

May 22, 2010

I am running an updated Lenny. Just discovered that as user I am able to add new users via gui:
System > Administration > Users and Groups.
I was under the impression adding new users was restricted to root. Is this is a bug, and if so who do I report this to?

View 1 Replies View Related

General :: Mounting Restricted Share For All Users?

Jan 25, 2010

I have a NAS on which I created a share with CIFS that has restricted access (that is: you need a username and password to access it). The reason is that I don't want any user in the network to mount this share.On one computer I have Bacula installed to run backups. I would Bacula to store the backups on the NAS share. So I mount the share in fstab. Works fine but the share directory is not read+write for all users but only for the root (since the mount was done for the root).The line in fstab:\readynasackup /readynas cifs user,rw,password=thePassword,username=bacula,umask=017 0 0How can I have Bacula (running as user Bacula) get read+write access to the directory representing the share?I tried to remove access control to the share but the directory representing the mount remains readonly...

View 1 Replies View Related

Ubuntu Servers :: LAMP Setup With Limited Access To Users

Mar 9, 2010

I'd like to setup an Ubuntu LAMP server, and provide limited access to it for our in-house web developers/designers. I'm not quite sure how to go about the permissions side of things. Which user/group should "own" the /var/www directory? Is it www-data?

How do I create user accounts (for our developers) that have access to the /var/www directory - do I create accounts then add them to the www-data group? Or should I make a special 'webdev' group and give it access somehow?

View 5 Replies View Related

Ubuntu Servers :: Allow Users Access Via SSH Terminal Or Sftp Via WinSCP?

Jun 6, 2010

I am currently running Ubuntu Server 9.10 as an FTP server. It has become a necessity to allow users access via SSH terminal or sftp via WinSCP. I need to be able to monitor what users are doing at any given time and be able to pull up each users activity history. Essentially I need to be able to pinpoint who modified a file at what time. Also what is the best method to monitor things like nmap probes?

View 1 Replies View Related

Server :: Apache - Free Access From Lan Users And Password Access To Wan Users ?

Jun 26, 2009

Im trying to config my intranet to be accessible from inside the network (lan) without need of password and ask for a passwd for those who are viewing from Wan ....

Today my intranet can only be accessed from Lan, external access give me an Unauthorized message, I took look around, try #irc and still can get the appropriated help, I hope that someone here could help me on that...

A piece of my config:

Code:

View 4 Replies View Related

Ubuntu Servers :: Stop Client Access To All Windows AD Domain Users Profile?

Feb 27, 2010

I am using Unbunto desktop and installed "likewise open" so that my linux client can access windows active directory(join the domain). On server side i have windows 2003 server. On windows 2003 server in active directory i have assigned each user a disk space. I have sucessfully joined linux (ubunto) box to the active directory domain but my linux box has access ($ it can use) to all other user diskpace ( they can browse other users) and when i joined windows xp client with the same server it works properly( xp client cant access or use other diskpace)

View 1 Replies View Related

Red Hat / Fedora :: Creating Web Page For Users With Restricted Shell To Change System Pw?

Feb 3, 2011

I have a box that's used as an SFTP server. All users have restricted shell so they can only use SFTP to send and receive files. But it makes it hard to have them change their passwords. I thought that if we had a web page set up where the user could enter their username, old password, new password and confirmed new password, that this would be the easiest solution.

View 1 Replies View Related

Ubuntu Servers :: Give Power Users Ability To Access All Of Their Folders Without Thrashing Security.

Feb 8, 2011

So, I am looking to implement an FTP server with Isolated Client accounts/directories where a client can only access what's in their directory. I also need to provide my internal user's (content managers) the ability to upload, delete, etc from all of the Client accounts. The simple part is creating the secure client accounts. It's a matter of changing DIR_MODE in adduser.conf to 700 or 770, creating a user, having the FTP server chroot them to their home directory, revoke/restrict shell/ssh access and maybe even slap on some ACL to prevent botched permissions.The hard part is figuring out how to give my power users the ability to access all of their folders without thrashing security.

My first thought was to put all of the client user-groups in a parent group and having my internal users inherit group permissions..but you can't have groups inside of groups.My second thought was to put all of the client users in the same group and prey that the FTP chroot is enough to keep them from poking around but then I have the problem of how do my internal users access other user directories if they are chrooted. Do I create a second server without chroot.do I create some weird nested homedir structure..I honestly have no idea how to satisfy both requirements (secure client accounts and privileged user accounts). I need my privileged users to authenticate against Active Directory via Likewise open, LDAP, etc and I don't care how the clients authenticate. Though, I would prefer to have both file and FTP-server level protection just to make sure no one can see the other client's data.

View 1 Replies View Related

Ubuntu :: Restricted SSH Access ?

Apr 14, 2010

I'm trying to lock down SSH for a particular user who wants to use my server for some development, so I'm making him a little play area.

Problem is I'm having difficulties locking the account down.

I've implemented bashrc which appears to be what I wanted at first, restricting the user to a user directory of my choice, but I now find that firstly the user can't use cd at all, not even cd to directories within the users home directory.

But also I've found bashrc to be pretty pointless security wise because I can just type sh and then do what ever the hell I want? Such as cd / and then ls and see everything on the server.

So I'm wondering if anyone has a solution to this for me?

I want the user to be able to make directories and cd into them in their own user area but not cd .. or / out of their user area.

View 3 Replies View Related

Ubuntu Security :: Time Restricted Access To Certain Websites

Jun 11, 2010

I'd like to be able to limit access to a particular website, based on the time of day. I would also like to be able to password protect this if possible.So for instance, from 7am until 10pm daily, I can access URL... but after 10pm it redirects to 127.0.0.1 or something. And this configuration be protected by only allowing a certain user (other than root) to change the config?

View 7 Replies View Related

General :: Install Ndiswrapper But Access Is Restricted

Apr 28, 2011

I just started using Linux, more specifically the Ubuntu distribution, earlier today. I am attempting, and failing, at setting up my wireless with a usb device. My device is on the list of those supported, and I am trying to install ndiswrapper so that I can use the windows drivers. My problem is, my access is restricted. I can not save to anywhere on my File System. Anyone know how to fix this problem?

View 2 Replies View Related

Ubuntu Networking :: Setup Samba On 10.10 (Free / Restricted Access)

Nov 19, 2010

I want to setup samba on Maverick. This is the case. I have 2 folders want to be shared, freeaccess and restrictedaccess. The freeaccess folder can be accessed by everyone on network. The restritedaccess folder can only be accessed with account named someone. What I want to ask is, how to setup samba that can solve that case...??

View 9 Replies View Related

Server :: Apache User's Filesystem Access Restricted?

Dec 13, 2010

In CGI scripts, there are certain files that are getting "permission denied" when it seems they should be accessible by the apache user. I am running the default package install of apache under fedora. Here is an example:The following is /var/www/cgi-bin/test.pl

Code:
#!/usr/bin/perl
use strict;

[code]...

View 9 Replies View Related

Ubuntu Servers :: Accessing Lan Via SSH In A Restricted Firewall?

May 5, 2010

I have a computer which has a public IP.My ISP has allowed only port 22 for my machine to be accessed outside from internet.I want rest of my computers which are connected to this machine be accessible via SSH on internet.I can configure IPTABLES to route different ports to internal machines but since ISP has given only one port for the gateway how can I go for it any guesses.I came across some thing reverse SSH tunneling but that has to keep the connection alive all the time at gateway I want my trusted people to be directly able to access the machines on LAN to which they have account to login in this scenario.

View 9 Replies View Related

Ubuntu Servers :: PHP/Apache2 Restricted In File Manipulation?

Aug 18, 2010

I have a LAMP server set up (under Ubuntu 10.04 64-bit), and have a PHP application running on the Apache2 server. I copied the "default" website setup, and created a new one with the root at "/home/kota/WebRoot/".

When running my PHP application though, I come across a major issue: The script doesn't seem to be able to modify any files that are currently on the system, or create new ones.

However, this limitation is restricted to when running through Apache2. In other words, if i run it by typing "php5 myapplication.php" from the terminal, it works without a flaw. This leads me to believe that there is a permissions issue, disallowing Apache2 to create and modify files anywhere on my system.

Although it shouldn't make much of a difference, here is the basic information that I feel I should provide:

Code:

View 2 Replies View Related

Ubuntu Servers :: Active Directory Domain Integration - Allow Domain Users To Authenticate Server And Access File Shares Using Samba

May 13, 2010

The company I work for, as usual, is Microsoft-centric. I'm attempting to integrate my Ubuntu server into the domain to allow domain users to authenticate to the server and access file shares using Samba. Here's my current configuration:

[Code].....

View 9 Replies View Related

General :: Use Symlink To Provide Access To A Specific File Under A Restricted Directory

Jan 24, 2011

My home directory's permissions allow only myself access to it. Is it possible to put a file inside my home directory with.. say.. full permissions, and create a symlink to it so other users can access that file alone inside my home folder? System is Ubuntu Karmic.

View 2 Replies View Related

General :: Use Find To Select Users With A Certain Amount Of Disk Space Usage?

May 16, 2011

I want to find all users shown in the /home/ directory whose disk consumption is more than 500MB. The following command works as expected.

cd /home/ && du */ -hs
68K ajay/
902M john/
250M websites/

From the above example, only 902M john/ should be returned.

How can I make the find command output the same results?

View 4 Replies View Related

Server :: Allow Users To Receive Emails From A Few Select Domains And Block The Rest

May 4, 2010

I've got a request from one of my company's subsidiaries to block all incoming and outgoing mail for a group of users. I've read up some guides on access.db and I know how to do that, but now they want to allow these users to receive emails from a few select domains, and block the rest. To summarize:

1) Block all incoming and outgoing email to users in team A, except mail from [URL]
2) All other users can receive and send mail from/to any domain.

View 2 Replies View Related

OpenSUSE :: Setup Private Git Repository With Restricted Rights On Server Without Root Access?

May 15, 2011

a friend of mine is doing a small website-project in school (group of ~6 people). They want to use git as VCS and need acces to a server. I have an account on the server from university, but - of course - no root access.

I could create private/public keys for them, to SSH into my account, but I don't want them to have this power I found 'git-shell', which seems to be used for restricted access with git (although I'm not sure whether I understood the functionality).

My question is: Is it possible to configure SSH keys in that way, that the server runs them (and only them) in git-shell in a specified directory (using ~/.ssh/{config,authorized_keys})?

So that they can
- log in with their SSH key
- use git, execute scripts etc.
- use git push/pull from their private+school PC
- work only in a specific directory (like chroot) eg. ~/web-project/

[Code]...

View 2 Replies View Related

Ubuntu Servers :: Add Windows & Mac Users As Samba Users?

Nov 23, 2010

If I want to add Windows & Mac users as Samba users, must I first add them all as Ubuntu users? If so, since none of the other users will actually be working on the Ubuntu Server, how do I disable the other non-admin users on the Ubuntu Server login screen. I am using Webmin to administer some server settings, and command line for others.

View 3 Replies View Related

Ubuntu Networking :: Can't Access Samba Sharing Between 3 Computers?

Mar 31, 2010

my main computer hostname is home, and the others are ubuntu and eduardo.In home, I try to configure samba, downloading it with "sudo apt-get install samba" and then downloading at the synaptic manager the samba-common-bin thing.I shared my folders as ROOT in home and I cannot access from ubuntu and eduardo.Then I googled and I found this site: Quote:URL]Well... I follow all steps and I can't access these files.What I need to do to share files between these computers???

View 9 Replies View Related

Ubuntu Networking :: LAN Surfer To Access Windows Computers?

Apr 22, 2010

but Im thinkng of completely switiching to Ubuntu,But all of my friends are on Windows...We have a LAN of abt 100-150 .. Is there is any GUI software thru which I can see all the files which are being shared on the network by Windows PCs,I know abt Samba ...but that is only computer specific & also that is reverse way...& doing from command will be tiresome task for all PCs.

View 3 Replies View Related

Ubuntu Networking :: Cannot Access Facebook Or Netflix From Computers

Feb 27, 2011

The problem started happening a few days ago. Only my linux computers are affected. Yup, that's right. My roommates running windows have zero problems.

What's the problem? Suddenly, I cannot access 2 websites: namely facebook and netflix. I just get a "waiting for facebook.com" status from my browser, and it waits there patiently until the browser finally gives up. I haven't found any other sites that give me this issue. Gmail, ....., flickr, etc all work fine.

This happens using both firefox and chrome browsers. I've tried using Ubuntu 10.10 (on my desktop) and Peppermint (distro based on ubuntu, runs on my laptop). Both machines access the internet via wifi. Both have the same problem! o_O

Both machines are up-to-date. I've rebooted many times. I've tried booting an old kernel. I haven't installed any new software lately. I've tried disabling all plugins for the browsers. I've tried power-cycling our internet modem. I've tried changing my DNS settings to use Google's Public DNS service. Nothing helps.

Actually, one small piece of information: If I put my browser in incognito mode, I can get to the "sign-in" page for both facebook and netflix. But upon putting in my credentials, I still cannot reach my custom user home page for either site.

View 9 Replies View Related

Debian :: Two Computers Suddenly Cannot Access Depositories

Mar 9, 2010

I have two computers, running Debian Lenny 5.0.3, suddenly they cannot access the Debian depositories and even when typed debian.org, the site does not come up! I used another hard disk with a different distro and one of the computers, and it did access the debian site. Any reason for this?

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved