[luau] restricting directory access
Warren Togami
warren at togami.com
Sat Apr 27 02:19:44 PDT 2002
----- Original Message -----
From: "Jimen Ching" <jching at flex.com>
To: <luau at videl.ics.hawaii.edu>
Sent: Friday, April 26, 2002 10:41 PM
Subject: Re: [luau] restricting directory access
> On Fri, 26 Apr 2002, Rodney Kanno wrote:
> >I just don't want anyone logging in via ssh to poke around
(view/download)in
> >my personal files. I don't mind them downloading things I specify, but
not
> >everything else.
>
> Is it sufficient to just allow read/execute access to the owner only?
> This is assuming you can trust the user to not hack your system. If you
> do not have this trust, why do you want to give ssh access to this person?
>
Local users who have their passwords stolen. This is the greatest threat to
most multi-user servers. It can happen often, especially to Windows users
who get cracked by trojans and backdoors. For this reason, I don't allow
any of AMDMB's dozen or so staff members SSH access even though it would be
far more convenient. If they need to upload files to the server, they send
it to me or the site owner and we upload it for them. Even though we trust
those people, we cannot trust their personal computers.
More information about the LUAU
mailing list