From owner-freebsd-security@FreeBSD.ORG  Thu May 20 13:56:15 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 5913416A4CE
	for <freebsd-security@freebsd.org>;
	Thu, 20 May 2004 13:56:15 -0700 (PDT)
Received: from mail.elvandar.org (cust.94.120.adsl.cistron.nl [195.64.94.120])
	by mx1.FreeBSD.org (Postfix) with ESMTP id BBAAC43D1F
	for <freebsd-security@freebsd.org>;
	Thu, 20 May 2004 13:56:14 -0700 (PDT)
	(envelope-from remko@elvandar.org)
Received: from [10.0.3.124] (aragorn.lan.elvandar.intranet [10.0.3.124])
	by mail.elvandar.org (Postfix) with ESMTP id 394DF10689E
	for <freebsd-security@freebsd.org>;
	Thu, 20 May 2004 22:56:12 +0200 (CEST)
Message-ID: <40AD1B6D.2050204@elvandar.org>
Date: Thu, 20 May 2004 22:56:13 +0200
From: Remko Lodder <remko@elvandar.org>
X-Accept-Language: en-us, en
MIME-Version: 1.0
Cc: freebsd-security@freebsd.org
References: <20040518160517.GA10067@therub.org>
	<OPEPILILPLAKPFCNKOKAGEGHCBAA.remko@elvandar.org>
	<20040520033024.GA26640@therub.org> <20040520204710.GB12301@dragon.roe.ch>
In-Reply-To: <20040520204710.GB12301@dragon.roe.ch>
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new at elvandar.org
Subject: Re: [Freebsd-security] Re: Multi-User Security
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 20 May 2004 20:56:15 -0000

Hey Daniel and Dan,

Daniel Roethlisberger wrote:

> Dan Rue <drue@therub.org> [2004-05-19/22:30]:
> 
>>You obviously havn't tried to chroot scponly users.. _that's_ the
>>tricky part.  Especially if you want it to scale up beyond a handful
>>of users.  If i'm wrong - fill me in i'd love to hear how to do it.
> 
> 
> I second that. I've been chrooting sftp-only users for a while now, with
> an approach similar to that of scponly, but I cannot say that my
> solution is scaling particularly well... :-/

Well you are both correct that i did not implement the chroot thingy, 
but i just responded for the "non shell required" thingy, you can do 
that as well with thhe listed package. I personally dont have any scp 
only users so there is no need for me to implement the given thingy's.

Excuse me if my information could be intrepetated differently then i ment.

Cheers

-- 


Kind regards,

Remko Lodder
Elvandar.org/DSINet.org
www.mostly-harmless.nl Dutch community for helping newcomers on the 
hackerscene