CageFS

[beta: 2.0]

About
Installation
Managing Users
Configuration

PAM configuration
File System Template
Mount points

Uninstalling CageFS
Upgrading from SecureLVE
cagefsctl tool

About

CageFS is a virtualized file system and a set of tools to contain each user in its own 'cage'. Each customer will have its own fully functional CageFS, with all the system files, tools, etc.

CageFS was previously known as SecureLVE. The benefits of CageFS are:

Only safe binaries are available to user
User will not see any other users, and would have no way to detect presence of other users & their usernames on the server
User will not be able to see server configuration files, such as apache config files.

At the same time, user's environment will be fully functional, and user should not feel in any way restricted. No adjustments to user's scripts are needed. CageFS will limit any scripts execution done via:

Apache (suexec, suPHP, mod_fcgid, mod_fastcgi)

LiteSpeed Web Server
Cron Jobs
SSH
Any other PAM enabled service

Note: mod_php is not supported, MPM ITK requires custom patch

Documentation

CageFS

About