整個配置的命令如下(主要使用了:Linux bash受限的shell(RESTRICTED SHELL))
步驟
#1.創建只讀shell
# ln -s /bin/bash /bin/rbash
#2.創建用戶並指定用戶啓動執行的shell
# useradd -s /bin/rbash readonly
#3.修改用戶密碼
# passwd readonly
#4.創建用戶shell執行命令目錄
# mkdir /home/readonly/.bin
#5.root修改用戶的shell配置文件
# chown root. /home/readonly/.bash_profile
# chmod 755 /home/readonly/.bash_profile
#6.修改bash配置文件,主要是指定PATH的讀取
# vi /home/readonly/.bash_profile
# .bash_profile
# Get the aliases and functions
if [ -f ~/.bashrc ]; then
. ~/.bashrc
fi
# User specific environment and startup programs
PATH=$HOME/bin
export PATH
#7.將允許執行的命令鏈接到$HOME/bin目錄
ln -s /usr/bin/wc /home/readonly/.bin/wc
ln -s /usr/bin/tail /home/readonly/.bin/tail
ln -s /bin/more /home/readonly/.bin/more
ln -s /bin/cat /home/readonly/.bin/cat
ln -s /bin/grep /home/readonly/.bin/grep
ln -s /bin/find /home/readonly/.bin/find
ln -s /bin/pwd /home/readonly/.bin/pwd
ln -s /bin/ls /home/readonly/.bin/ls
ln -s /bin/ll /home/readonly/.bin/ll