整个配置的命令如下(主要使用了:Linux bash受限的shell(RESTRICTED SHELL))
步骤#1.创建只读shell# ln -s /bin/bash /bin/rbash#2.创建用户并指定用户启动执行的shell# useradd -s /bin/rbash readonly#3.修改用户密码# passwd readonly#4.创建用户shell执行命令目录# mkdir /home/readonly/.bin#5.root修改用户的shell配置文件# chown root. /home/readonly/.bash_profile # chmod 755 /home/readonly/.bash_profile#6.修改bash配置文件,主要是指定PATH的读取# vi /home/readonly/.bash_profile # .bash_profile # Get the aliases and functionsif [ -f ~/.bashrc ]; then . ~/.bashrcfi # User specific environment and startup programsPATH=$HOME/binexport PATH#7.将允许执行的命令链接到$HOME/bin目录ln -s /usr/bin/wc /home/readonly/.bin/wcln -s /usr/bin/tail /home/readonly/.bin/tailln -s /bin/more /home/readonly/.bin/moreln -s /bin/cat /home/readonly/.bin/catln -s /bin/grep /home/readonly/.bin/grepln -s /bin/find /home/readonly/.bin/findln -s /bin/pwd /home/readonly/.bin/pwdln -s /bin/ls /home/readonly/.bin/lsln -s /bin/ll /home/readonly/.bin/ll