On Fri, Jun 14, 2002 at 06:12:30PM +0100, Prabhu wrote: > > i m not advanced in linux, hae running linux in my cafe as a gateway > to internet, now i have some problems like few persons try to make > changes to the system. and i dont know what to do, >
Are you connecting to Internet on Linux ? Normal users cannot make any changes to /etc and other critical areas of the system ... or are you permitting superuser access for any reason ? > > as i want to stop all this i thought of creating a user on which the > user can only connect to the internet via ppp0 thats is dialup. > This is step one ... to give superuser privileges for dialing is not to be done. Create a user called "guest" who need not have a password, (passwd -d guest). If you are using wvdial for dialing, make a "sudo" entry for this user "guest" for accessing wvdial. For details on this see http://geocities.com/usmbish/hdi.html. The user guest will be able to dial using wvdial. There is a script called x-wvdial on the net, in case you want to do it under X. This also uses sudo for affecting user dial-in. > > and i want the user to restrict to such an extent that he can not > view files on the system, > The method here is to chroot this user "guest". This is a rather long topic ... need to do some RTFM here. > he can be alowed to only conntect disconnect, shutdown and reboot > the computer, If you want "guest" to have control over shutdown process, you may do a sudo entry for "guest" for "halt" binary. "reboot" is normally a symlink to /sbin/halt. /sbin/shutdown need not be touched. > i want to know is it possible to do so when xwindow system is run- > ning, Dialing ISP yes, halt/ reboot YES, through xterm. Alternatively, do a 3-finger salute. For most systems it is set for reboot. All this needs is an entry in /etc/inittab which looks like this: # What to do at the "Three Finger Salute". ca::ctrlaltdel:/sbin/shutdown -t5 -rf now > > i tried to know these things but i heard also that squid wont run > when u start the computer in user mode, can someone help me with > this security issue now? > Don't understand this. How does squid come into the picture here .. HTH Bish -- : ####[ Linux One Stanza Tip (LOST) ]########################### Sub : Command line shortcuts (history) LOST #271 To get a command pre-existing in the history press [Ctrl+R] and type in a character or two of the desired command. You can press the right arrow till you get the required command This works for most shells (except for ash, bsh and ksh) ####<[EMAIL PROTECTED]>######################################### : _______________________________________________________________ Sponsored by: ThinkGeek at http://www.ThinkGeek.com/ _______________________________________________ linux-india-help mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/linux-india-help
