Restricting user's ability to execute binaries in home directory.

Randy Kaelber plug-discuss@lists.PLUG.phoenix.az.us
Mon, 11 Jun 2001 12:27:32 -0700 (MST)


On Mon, 11 Jun 2001, Shadow wrote:

> So far the only way I have seen to restrict arbitrary execution is with
> the noexec option in the /etc/fstab.  Unfortunately this also prevents
> my trusted users from executing their programs.  Any suggestions?

Why not put your trusted and untrusted users home directories on different
filesystems?  Like, /home and /homes or some such?

Randy