From owner-freebsd-questions@FreeBSD.ORG  Wed May  4 11:35:35 2011
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 9AA1B106566B
	for <freebsd-questions@freebsd.org>;
	Wed,  4 May 2011 11:35:35 +0000 (UTC)
	(envelope-from m.seaman@infracaninophile.co.uk)
Received: from smtp.infracaninophile.co.uk (smtp6.infracaninophile.co.uk
	[IPv6:2001:8b0:151:1:3fd3:cd67:fafa:3d78])
	by mx1.freebsd.org (Postfix) with ESMTP id 1CA018FC12
	for <freebsd-questions@freebsd.org>;
	Wed,  4 May 2011 11:35:34 +0000 (UTC)
Received: from russet.local (reflex.squiz.co.uk [83.217.109.164])
	(authenticated bits=0)
	by smtp.infracaninophile.co.uk (8.14.4/8.14.4) with ESMTP id
	p44BZPcR069952
	(version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO)
	for <freebsd-questions@freebsd.org>;
	Wed, 4 May 2011 12:35:31 +0100 (BST)
	(envelope-from m.seaman@infracaninophile.co.uk)
X-DKIM: Sendmail DKIM Filter v2.8.3 smtp.infracaninophile.co.uk p44BZPcR069952
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
	d=infracaninophile.co.uk; s=201001-infracaninophile; t=1304508931;
	bh=GuaH7V2zv4lIpys5GMKqaOD4+KGtBTo6ofBEsLUcAro=;
	h=Message-ID:Date:From:MIME-Version:To:Subject:References:
	In-Reply-To:Content-Type:Cc:Content-Type:Date:From:In-Reply-To:
	Message-ID:Mime-Version:References:To;
	z=Message-ID:=20<4DC139F7.9080109@infracaninophile.co.uk>|Date:=20W
	ed,=2004=20May=202011=2012:35:19=20+0100|From:=20Matthew=20Seaman=
	20<m.seaman@infracaninophile.co.uk>|User-Agent:=20Mozilla/5.0=20(M
	acintosh=3B=20U=3B=20Intel=20Mac=20OS=20X=2010.6=3B=20en-US=3B=20r
	v:1.9.2.17)=20Gecko/20110414=20Thunderbird/3.1.10|MIME-Version:=20
	1.0|To:=20freebsd-questions@freebsd.org|Subject:=20Re:=20Limitting
	=20SSH=20access|References:=20<07CAE521148F4E7392202CD6B031F504@ja
	rasc430>|In-Reply-To:=20<07CAE521148F4E7392202CD6B031F504@jarasc43
	0>|X-Enigmail-Version:=201.1.1|Content-Type:=20multipart/signed=3B
	=20micalg=3Dpgp-sha1=3B=0D=0A=20protocol=3D"application/pgp-signat
	ure"=3B=0D=0A=20boundary=3D"------------enig8460353A5D1F0DAB59F362
	0B";
	b=p7uxcK1ukzaizKi4aTQbV89dCzbmiC/qJpxvtCtuWsYRwyGdYyArTpJ3PgsMujLgs
	yr3xjBDZQap2sv8bfu9c5+kf9gQXXKUIFq9+/UUYCcx00vTuLEv/PCc5WnISxmk1Mi
	KCi0QdWS4DlfClhlJSFEyIzeIfU6VaFOXC5jsCus=
X-Authentication-Warning: lucid-nonsense.infracaninophile.co.uk: Host
	reflex.squiz.co.uk [83.217.109.164] claimed to be russet.local
Message-ID: <4DC139F7.9080109@infracaninophile.co.uk>
Date: Wed, 04 May 2011 12:35:19 +0100
From: Matthew Seaman <m.seaman@infracaninophile.co.uk>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US;
	rv:1.9.2.17) Gecko/20110414 Thunderbird/3.1.10
MIME-Version: 1.0
To: freebsd-questions@freebsd.org
References: <07CAE521148F4E7392202CD6B031F504@jarasc430>
In-Reply-To: <07CAE521148F4E7392202CD6B031F504@jarasc430>
X-Enigmail-Version: 1.1.1
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature";
	boundary="------------enig8460353A5D1F0DAB59F3620B"
X-Virus-Scanned: clamav-milter 0.97 at lucid-nonsense.infracaninophile.co.uk
X-Virus-Status: Clean
X-Spam-Status: No, score=-0.1 required=5.0 tests=BAYES_40,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,SPF_FAIL autolearn=no version=3.3.1
X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on
	lucid-nonsense.infracaninophile.co.uk
Subject: Re: Limitting SSH access
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 04 May 2011 11:35:35 -0000

This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enig8460353A5D1F0DAB59F3620B
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

On 04/05/2011 10:08, Jack Raats wrote:
> I have a question concerning SSH op a FreeBSD 7.4-STABLE server.
>=20
> Is it possible to limit the SSH access?=20
> I want t o restrict a user to his own home directory.=20
> So that if he connects to the server with SSH he only can go to his own=
 home dir.
> Also the same for sftp...
>=20

I believe you will need to install a version of OpenSSH from ports to
get that functionality.  It's the CHROOT config option in
security/openssh-portable

	Cheers

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
                                                  Flat 3
PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
JID: matthew@infracaninophile.co.uk               Kent, CT11 9PW


--------------enig8460353A5D1F0DAB59F3620B
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"

-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.14 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEARECAAYFAk3BOfwACgkQ8Mjk52CukIwOSwCdFN9p0g3PrGCwXZDHIMCc4JNI
A30An3HpRv4qTmxozJAi8jVuVOAOppHK
=KzVm
-----END PGP SIGNATURE-----

--------------enig8460353A5D1F0DAB59F3620B--