Date: Thu, 15 Aug 2002 18:58:54 +0000 From: Baldur Gislason <baldur@foo.is> To: Philip Paeps <philip@paeps.cx> Cc: security@freebsd.org Subject: Re: Chroot environment for ssh Message-ID: <20020815185947.540AE27A0@tesla.foo.is> In-Reply-To: <20020815134341.GO1144@juno.paeps.cx> References: <20020815134341.GO1144@juno.paeps.cx>
next in thread | previous in thread | raw e-mail | index | archive | help
/usr/ports/security/ssh2 has that feature built in, it can chroot certain users or users that are members of certain groups. Baldur On Thursday 15 August 2002 13:43, you wrote: > Hi guys - > > I'm in the process of setting up a form of fileserver, and I'd like for my > users to be able to work only in their home directories, not anywhere else. > I would like to use SSH for the connections, as opposed to FTP, but I > don't want users to be able to log into an interactive shell (only > SCP/SFTP) and I don't want them to 'escape' out of their home directories. > > Anyone have any ideas on how I'd go about doing this? I've been fiddling > with chrsh (a 'chroot shell') but it's not really what I want. > > (I was debating with myself whether to post this on -questions of > -security, I hope I chose wisely in the end). > > Thanks! > > - Philip To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020815185947.540AE27A0>