From owner-freebsd-questions@FreeBSD.ORG Mon Feb 2 08:40:46 2004 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D878116A4CF for ; Mon, 2 Feb 2004 08:40:46 -0800 (PST) Received: from EMAILSERVER2.nemschoff.com (host-66-202-56-162.mil.choiceone.net [66.202.56.162]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5AE3D43D1F for ; Mon, 2 Feb 2004 08:40:19 -0800 (PST) (envelope-from MClark@Nemschoff.com) Received: by EMAILSERVER2.nemschoff.com with Internet Mail Service (5.5.2653.19) id ; Mon, 2 Feb 2004 10:44:43 -0600 Message-ID: From: Michael Clark To: 'Luke Kearney' , Michael Clark Date: Mon, 2 Feb 2004 10:44:43 -0600 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="iso-8859-1" cc: "'freebsd-questions@freeBSD.org'" cc: Evan Sayer Subject: RE: chrooted ssh/scp X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Feb 2004 16:40:47 -0000 its in ports... -----Original Message----- From: Luke Kearney [mailto:lukek@meibin.net] Sent: Monday, February 02, 2004 10:34 AM To: Michael Clark Cc: 'freebsd-questions@freeBSD.org'; Evan Sayer Subject: Re: chrooted ssh/scp On Mon, 2 Feb 2004 10:02:32 -0600 Michael Clark granted us these pearls of wisdom: > sshd2 will do this and if you read the license I believe it is legal to use > for most users. > > Else you can use sudo to make a ssh chroot. > google groups has some explainations of how to do this. > > > Michael Clark > Nemschoff Chairs Inc > mclark at nemschoff dot com > CompTIA A+, MCP > Voice: (920) 457 7726 x294 > Fax: (920) 453 6594 > > > > -----Original Message----- > From: Lowell Gilbert [mailto:freebsd-questions-local@be-well.ilk.org] > Sent: Monday, February 02, 2004 8:11 AM > To: Evan Sayer > Cc: freebsd-questions@freeBSD.org > Subject: Re: chrooted ssh/scp > > > Evan Sayer writes: > > > Does anyone know how to make it so that users can ssh in and get a > > normal shell or scp in and get or send files but only within their own > > home directories via chroot? > > The commercial ssh server has that capability built in, but the free > ones don't, last I checked. You should be able to hook up jail(8) or > chroot(8) to the account itself, though... excuse me if this seems off topic but a quick check over at ssh.com revealed no obvious links to a downloadable version that would not require a license. Pray tell where I might find the binaries. I would like to give sshd2 a run and see if it might fix a problem that has been nagging at me for a bit. TIA LukeK CONFIDENTIALITY NOTE: This electronic transmission, including all attachments, is directed in confidence solely to the person(s) to whom it is addressed, or an authorized recipient, and may not otherwise be distributed, copied or disclosed. The contents of the transmission may also be subject to intellectual property rights and all such rights are expressly claimed and are not waived. If you have received this transmission in error, please notify the sender immediately by return electronic transmission and then immediately delete this transmission, including all attachments, without copying, distributing or disclosing same.