These forums are locked and archived, but all topics have been migrated to the new forum. You can search for this topic on the new forum: Search for Webmin User with restricted Directory Access on the new forum.
Web Hosting and Cloud Computing Control Panels
Howdy,
The filemanager doesn't do any access control, it allows a user to view any file or directory that the filesystem allows them to.
You can lock things down a bit on the filesystem, but overall, a lot of files and directories on the system are (intentionally) world readable..
If that's a problem though, you might need to explore a different option, such as using FTP, and have the FTP client lock the user into a certain directory or directories.
-Eric
Actually, File Manager can do access control.
In Webmin->Webmin->Webmin Users, click on the username. Find File Manager in the list of modules. Edit "Chroot directory for entire file manager" and set it to /home/username. There are a bunch of other restrictions you can apply.
Most Webmin modules have pretty advanced ACL capabilities. See the docs for more on the subject:
http://doxfer.com/Webmin/WebminUsers
--
Check out the forum guidelines!
[color=#0000FF]Hey thanks ! That was indeed great help .....[/color]
But what happens if a user upload with FTP a PHPFilebrowser, his own File Browser or something like this. In my case he can browse through the whole file system and can see password etc.
Thats horrible. How can I avoid this?
It looks like there's a duplicate of this post in another thread, I posted a followup over there:
https://www.virtualmin.com/node/10481
But Ronald's answer below is right on, passwords shouldn't be visible, and if that's the case, something else is wrong :-)
-Eric
in that case something else (permission) may be wrong on your system. A normal user can not see sensitive information.