var sidebar_align = 'right';
var content_container_margin = parseInt('350px');
var sidebar_width = parseInt('330px');
Possible to use wget in jailed shell mode?
Doesn't seem to work here
[email protected] [~]# wget
-jailshell: /usr/bin/wget: Permission denied
wget is usually disabled in jailshell - and honestly I haven't looked into any configuration for jailshell (if there is such a thing) so I don't know if it would be possible to enable it if...
You should be able to use curl however.
Wget can work in jailed shells. From the error you are getting, it simply looks like the provider doesn't allow regular users to run wget. Check the permissions on wget.
No monkey business.
Generally regular users are in group wheel. So chowning the wget binary to root:wheel should resolve the issue for jailed users.
For security, I would suggest regular users not be members of the wheel group - I know a few hosts make that change standard but to a lot of people it isn't that big of a deal.
Group wheel is actually intended only for super users (well, potential super users who should be able to su to root). Definitely it should not be used a system wide user group.
Originally Posted by FirmbIT
I'd provide an alternate copy of wget for people who really need it, I wouldn't make it available as it tends to be used by scripted attacks! eg: something like "wget_real" or "wgetz".
Last edited by brianoz; 10-14-2006 at 01:03 AM.
You can just use
lwp-download url instead of wget
are you on a shared hosting ?
The point is to make yourself a harder target through a variety of things. Renaming wget won't stop a determined attacker. It *will* break a lot of automated attacks.
Trust me, breaking automated attacks is something you want. It tilts the odds in your favour. Lots of these little things add up over time.
Please someone explain how to enable wget for ONE particular user in jailed ssh mode
I really need help on this please
Assuming you are running Linux and have access to root:
It creates a new group "wgetusers", and the usermod line adds <userid> user to that group. Then it changes the group of wget to "wgetusers", and make sure only users of that group can access it.
# groupadd wgetusers
# usermod -G wgetusers -a <userid>
# chgrp wgetusers /usr/bin/wget
# chmod 750 /usr/bin/wget
Repeat the "usermod" line if you have multiple users want to access wget.
What goes in place of "userid"?
[email protected] [~]# groupadd wgetusers
[email protected] [~]# usermod -G wgetusers -a username
usermod: user displayw2 does not exist
[email protected] [~]# usermod -G wgetusers -a <userid>
-bash: syntax error near unexpected token `newline'
Replace <userid> with the actual userid you wish to grant wget access to. For example, user "jsmith"
# usermod -G wgetusers -a jsmith