Telnet/SSH Restriction

How do I restrict the places someone can go in a telnet/ssh session?

For example;

logina can not only access his directory with read/write, but he can go into the system config files, password files, other customers scripts, all with read properties.

I want to give telnet/ssh because it is such as good feature, but don't want them to leave their home directory (ie. /home/user/).

THANKS

 

 

 

 

Top