Hi Ted,
On Mi 29 Feb 2012 13:43:32 CET wrote:
We can accomplish a sort of bash lock down if we start an x2go
session from a PC, and then manually as root (sudo su) on the
server run a script that creates a folder in the active x2go users
home, replace that user's .bashrc file with one that has a new path
value, and create a link from bash to the folder. This doesn't
disrupt the user's session, and disables most commands in
gnome-terminal (users can do "cd" commands but no "ls" and can't do
"./" to start scripts; users can still create .sh files and double
click on them: we are using Ubuntu Server 10.4).
can a restricted user call ''bash'' on the command line??? This used
to be possible in older times... I'd rather suggest working into the
direction of using /bin/true instead of /bin/rbash.
I haven't looked any deeper into your approach (lack of time) sorry,
but an upstream/mainstream solution for X2Go would rather be a system
without the possibility of calling a shell.
Greets, Mike
--
DAS-NETZWERKTEAM mike gabriel, dorfstr. 27, 24245 barmissen fon: +49 (4302) 281418, fax: +49 (4302) 281419
GnuPG Key ID 0xB588399B mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...