From owner-freebsd-isp  Thu Jan 29 14:06:21 1998
Return-Path: <owner-freebsd-isp@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id OAA01279
          for freebsd-isp-outgoing; Thu, 29 Jan 1998 14:06:21 -0800 (PST)
          (envelope-from owner-freebsd-isp@FreeBSD.ORG)
Received: from mixcom.mixcom.com (mixcom.mixcom.com [198.137.186.100])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id OAA01272
          for <freebsd-isp@FreeBSD.ORG>; Thu, 29 Jan 1998 14:06:17 -0800 (PST)
          (envelope-from mountin.man@mixcom.com)
Received: by mixcom.mixcom.com (8.6.12/2.2)
	   id QAA21030; Thu, 29 Jan 1998 16:07:51 -0600
Received: from dial193-43.mixcom.com(207.250.193.43) by mixcom.mixcom.com via smap (V1.3)
	id sma020989; Thu Jan 29 16:07:20 1998
Message-Id: <3.0.3.32.19980129160200.00720ea4@198.137.186.100>
X-Sender: mmttnn@198.137.186.100
X-Mailer: QUALCOMM Windows Eudora Pro Version 3.0.3 (32)
Date: Thu, 29 Jan 1998 16:02:00 -0600
To: alex@comsys.com, Adrian Filipi-Martin <adrian@virginia.edu>
From: "Jeffrey J. Mountin" <mountin.man@mixcom.com>
Subject: Re: chroot
Cc: freebsd-isp@FreeBSD.ORG
In-Reply-To: <34D0EDD6.1FB2@comsys.com>
References: <Pine.SOL.3.96.980129154002.28486D-100000@mamba.cs.Virginia.EDU>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org
X-To-Unsubscribe: mail to majordomo@FreeBSD.org "unsubscribe freebsd-isp"

At 01:00 PM 1/29/98 -0800, alex@comsys.com wrote:
>Adrian,
>
>I'm sorry, "to the man with a hammer everything appears a nail."
>
>My solution does not address your telnet problem. We recently
>fixed a chroot problem with ftp, and not telnet. My mistake.
>
>We never allow any telnet access to our system for the 
>general customer, so the telnet part of your message didn't register.
>
>There was an 'rsh' or restricted shell a while back... I don't
>see it on our recent systems though. Trial and error using
>.profile, .login, .cshrc, or globals for csh shell,
>/etc/csh.cshrc /etc/.csh.login might help.

I might be wrong, but didn't someone say this could be done with telnet as well?

It would require files to be copied under the chroot in a structure similiar to the system.  Mail would be a problem, if it resided on the same system.

Certainly a desirable thing to do for shell users and would save time chmod'ing files and directories.

Time to dig back now...


Jeff Mountin - Unix Systems TCP/IP networking
mountin.man@mixcom.com