Date: Thu, 15 Aug 2002 19:05:46 +0300 (EEST) From: Dan Airinen <dan.airinen@cyberdoom.org> To: Philip Paeps <philip@paeps.cx> Cc: security@freebsd.org Subject: Re: Chroot environment for ssh Message-ID: <20020815190221.M7905-100000@daemon.cyberdoom.org> In-Reply-To: <20020815134341.GO1144@juno.paeps.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
Hi Philip, You could give a try to http://chrootssh.sourceforge.net/ -------------------------------- Dan Airinen System Administrator Email: dan.airinen@cyberdoom.org -------------------------------- "Qvid me anxivs svm?" On Thu, 15 Aug 2002, Philip Paeps wrote: > Hi guys - > > I'm in the process of setting up a form of fileserver, and I'd like for my > users to be able to work only in their home directories, not anywhere else. I > would like to use SSH for the connections, as opposed to FTP, but I don't want > users to be able to log into an interactive shell (only SCP/SFTP) and I don't > want them to 'escape' out of their home directories. > > Anyone have any ideas on how I'd go about doing this? I've been fiddling with > chrsh (a 'chroot shell') but it's not really what I want. > > (I was debating with myself whether to post this on -questions of -security, I > hope I chose wisely in the end). > > Thanks! > > - Philip > > -- > Philip Paeps > philip@paeps.cx > http://www.paeps.cx/ > > +32 486 114 720 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020815190221.M7905-100000>