Date: Thu, 21 Sep 2000 00:29:59 -0700 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Drew Sanford <drew@planetwe.com> Cc: questions@FreeBSD.ORG Subject: Re: chroot - security alternatives? Message-ID: <20000921002959.A367@149.211.6.64.reflexcom.com> In-Reply-To: <39C937E5.F67665C5@planetwe.com>; from drew@planetwe.com on Wed, Sep 20, 2000 at 05:19:17PM -0500 References: <39C937E5.F67665C5@planetwe.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Sep 20, 2000 at 05:19:17PM -0500, Drew Sanford wrote: > I have an NFS mounted raid box that I have users home directories on. I > want to chroot these users, but they do not ftp into the machine that is > local to the raid box. As a result, the chroot fails, and login fails > when a user tries to ftp in. How can I make ../ inaccessable to these > users other than chroot? Is there a way to chroot drives that are nfs > mounts? Thanks for any advice on this. This is a bit confusing. First of all, RAID has nothing to do with any of this. You just want to have users ftp into a machine that has NFS mounted home directories, right? That defines the problem. Anything else is extraneous. Now, when they ftp into this machine with the NFS home directories, you say it fails. In what way does it fail? As for chrooting on an NFS mount, I am not aware of any problems chrooting on NFS. I just did a quick and not-so-scientific test, # mount localhost:/usr/home /mnt # chroot /mnt/joeuser /test_prog It did not fail. # Where that was the correct output of /usr/home/joeuser/test_prog. This special case seems to work. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000921002959.A367>