modifying user access

[subtype]

I run a CentOS server and have a few dozen FTP accounts for my employees. I created each account with:

adduser -d /var/www/domain/username username

so that their home directory is the same as their username... but there's a problem. Some of them have "/" listed as their home directory when they log in with an FTP app, and are stcuk in that directory (good) and some have "username" as the directory name, and can browse up through other directories, like other employee folders (bad). How do I take an account of the latter type and force their home directory to read "/" and keep them locked into just that folder?

[Cabhan]

It seems weird that some of them would have / as their home directory. Are you sure that their actual home directories exist? Check the /etc/passwd file to check that the right directory is listed there and that the directory exists and has the correct permissions for the user.

As far as the "limiting people to only their directory" thing goes, there are two ways to do this. One is called a chroot jail, and it's unreliable and VERY difficult to set up. The other is to use just the regular UNIX permissions system, and set the permissions for each user's home directory to 700. This way, the user can do whatever he wants with it, but other users will not be able to do anything with it.

Make sense??

[subtype]

Yeah, it makes sense, but it doesn't limit them from browsing up and say getting into our website files that are in /htpddocs....

Could it be that they have permissions elsewhere on the servers and it is letting them browse up so they can get there?