userdoc:tt_restricted_user_login

This is an old revision of the document!


Restricted User Login

AstLinux now supports a restricted login shell /bin/rbash for optional non-root users. The Restricted Shell is a special mode of bash.

Note: AstLinux 1.2.10 or later is required

A restricted user (staff in this example) can be added using the CLI as root, using the command:

adduser -s /bin/rbash staff


Warning -> Never change the root user's login shell to /bin/rbash !

Note -> If the FTP Server is enabled, by default restricted user accounts will be allowed unless a custom /mnt/kd/vsftpd.conf is used.

A restricted user only has access to the commands in /usr/rbin/, and additionally /mnt/kd/rbin if it exists.

An example set of command are:

arp          df           host         iftop        mtr          ping         pwd          traceroute   uptime
clear        fping        htop         ip           netstat      ping6        ss           traceroute6  whoami
date         fping6       ifconfig     ls           nslookup     ps           top          uname        whois

Determine the exact set of commands on your system with the command:

ls /usr/rbin/
  • userdoc/tt_restricted_user_login.1487354329.txt.gz
  • Last modified: 2017/02/17 11:58
  • by abelbeck