I have a task to create a new id that going to used by vendor. The ID profiles are:
1)The ID to be created is MUST be restricted sharing.
2)create for their own user account
3)unable to read/navigate/view other directories
4)unable to write to other directories
able to create their own directory
I have used the 'rsh shell' but it disallows the "cd" command. Is there any other options?
Your cooperation is highly appreciated.
Thanks in advance
I suggest you make a unique group for this vendor, and make a user id that is the sole member of this group.
Normal UNIX security should do the rest.
I think you will have problems with this as a requirement.
If another directory says "other-read" then this user will be able to read from them, similarly, if any other directory (such as /tmp) is "other-write" then this user will be able to write to that directory.
So means that when i create a new directory, I can not 'cd' on it?
Normally when you create a directory the directory is created as owned by you and with your default group. Normally the access rights will be setup so you can cd into it.
Do you understand about
(a) read, write and execute attributes
(b) user, group and other categories
(c) execute for a directory means can navigate through it.