From owner-freebsd-isp Sat Aug 17 7: 6:32 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 4B61137B400 for ; Sat, 17 Aug 2002 07:06:30 -0700 (PDT) Received: from ns2.wananchi.com (ns2.wananchi.com [212.49.74.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 8425F43E6E for ; Sat, 17 Aug 2002 07:06:28 -0700 (PDT) (envelope-from wash@wananchi.com) Received: from wash by ns2.wananchi.com (Exim 4.10 #9 (FreeBSD)) protocol: local id 17g4DK-000EAk-00 ; Sat, 17 Aug 2002 17:06:02 +0300 Date: Sat, 17 Aug 2002 17:06:02 +0300 From: Odhiambo Washington To: freebsd-isp@freebsd.org Cc: yazzy@yazzy.org Subject: Re: ssh chroot Message-ID: <20020817140602.GE82081@ns2.wananchi.com> Mail-Followup-To: Odhiambo Washington , freebsd-isp@freebsd.org, yazzy@yazzy.org References: <56221.80.232.16.66.1029201402.squirrel@mail.yazzy.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <56221.80.232.16.66.1029201402.squirrel@mail.yazzy.org> User-Agent: Mutt/1.4i X-Disclaimer: Any views expressed in this message,where not explicitly attributed otherwise, are mine alone!. X-Fortune: Majority, n.: That quality that distinguishes a crime from a law. X-Operating-System: FreeBSD 4.6-STABLE i386 X-Best-Window-Manager: Blackbox X-Mailer: Mutt 1.4i (2002-05-29) X-Designation: Systems Administrator, Wananchi Online Ltd. X-Location: Nairobi, KE, East Africa. X-Uptime: 5:03PM up 3 days, 3:21, 2 users, load averages: 0.18, 0.22, 0.24 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org * Marcin Jessa [20020813 07:45]: wrote: > Hi. > > Is there any way to implement a ssh chroot() functionality on a server? > I am not really interested in running jail. > I have found something called scponly - > http://www.sublimation.org/scponly/ but that is not what I need. I need > users to be actually able to ssh to my box , not only scp to/from it > without being able to browse and edit their files. > Thanks in advance. > > > -- Hi YazzY, Long time ;-) The closest I did with what you are asking was to give those dudes an rbash shell. cd /usr/local/bin && ln bash rbash Add /usr/local/bin/rbash to /etc/shells. Ciao -Wash -- Odhiambo Washington "The box said 'Requires Wananchi Online Ltd. www.wananchi.com Windows 95, NT, or better,' Tel: +254 2 313985-9 +254 2 313922 so I installed FreeBSD." GSM: +254 72 743223 +254 733 744121 This sig is McQ! :-) Think of it! With VLSI we can pack 100 ENIACs in 1 sq. cm.! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message