Portal Home > Knowledgebase > Articles Database > how do i create a user with limited permission ?
how do i create a user with limited permission ?
Posted by AndyJ, 10-05-2007, 08:15 PM |
Hi guys,
I used to create a user by using /usr/sbin/sysinstall in freebsd, but how do i limit that user so he can't view important files (like: dhcpd.conf, rc.conf....) or can't do such as command pico, nano, vi ...etc?
All i want is that user can log in to my freebsd box and then he will ssh to other local servers, I just want my freebsd box is a bridge/gate for him to ssh to local servers which behind that freebsd box. Is it possible ?Thanks.
I know that i have to create a group with has only ssh permission but how do i do that? thanks.
|
Posted by CArmstrong, 10-05-2007, 08:31 PM |
File and user account permissions don't work on *nix don't work quite like they do on Windows. Instead of dealing with a user account and making it an Administrator or Restricted User, Unix works with individual file permissions. particular groups are given particular permissions to access each file. Read http://www.dartmouth.edu/~rc/help/faq/permissions.html for a good primer.
|
Posted by eightyone, 10-05-2007, 08:48 PM |
Since you are just looking for a way for them to get into your network, you could give openvpn a try. Run your vpn server on the FreeBSD "gateway" box and then once vpn'd in they can ssh to the other machines on the back end.
|
Add to Favourites Print this Article
Also Read