Hi,
I am trying to setup a web server for my company on Mac OSX Lion.
I would like to create SSH users for which their root directory would be Apache htdocs, so they wont be able to access files system outside their personal home dir.
I currently created standard users by using System Preferences > Users, and then the Directory Utility.
I modified the NFS Home Directory parameters in order to assign to each of them /opt/local/www/ *(Im using the Apache Distribution on macPort).
I then enabled SSH service in system preferences (remote session) for all users (I cant manage how to specify a connection for specific users only).
Remote Connection is working fine, and home dir is /opt/local/www/
However, these users can browse the system root (/) but do not have the write permissions.
My main problem is than my server is not secured at the moment.
1. Any user can login using SSH
2. Users I created can access the whole disk
3. I could not find how to assign identification for public key
4. These users can login on the server at boot
5. Optionally, would you think OSXServer 10.7 integrated tools would be any help to me to manage users?
Thanks for your answers.
Regards
I am trying to setup a web server for my company on Mac OSX Lion.
I would like to create SSH users for which their root directory would be Apache htdocs, so they wont be able to access files system outside their personal home dir.
I currently created standard users by using System Preferences > Users, and then the Directory Utility.
I modified the NFS Home Directory parameters in order to assign to each of them /opt/local/www/ *(Im using the Apache Distribution on macPort).
I then enabled SSH service in system preferences (remote session) for all users (I cant manage how to specify a connection for specific users only).
Remote Connection is working fine, and home dir is /opt/local/www/
However, these users can browse the system root (/) but do not have the write permissions.
My main problem is than my server is not secured at the moment.
1. Any user can login using SSH
2. Users I created can access the whole disk
3. I could not find how to assign identification for public key
4. These users can login on the server at boot
5. Optionally, would you think OSXServer 10.7 integrated tools would be any help to me to manage users?
Thanks for your answers.
Regards
