Date: Mon, 20 Dec 2004 15:11:45 -0700 From: Brett Glass <brett@lariat.org> To: Nigel Houghton <nigel@sourcefire.com> Cc: freebsd-security@freebsd.org Subject: Re: chroot-ing users coming in via SSH and/or SFTP? Message-ID: <6.2.0.14.2.20041220145924.0624c328@localhost> In-Reply-To: <20041220212304.GV792@sourcefire.com> References: <6.2.0.14.2.20041220142255.06260ca0@localhost> <20041220212304.GV792@sourcefire.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 02:23 PM 12/20/2004, Nigel Houghton wrote: >Is there something wrong with using the scponly shell for the users? Mainly that I hadn't heard of it until you mentioned it. ;-) Thank you! (I knew I could get a quick answer, if there was one, from the list.) I just tried building it (twice, because the first time I didn't realize that it required a special variable to be defined before it would set itself up to chroot users). I'll be testing it shortly to be sure that the "jails" created by its sample script (which creates both the user ID and the jail) have everything needed for FreeBSD. It'd be nice if there were a more centralized "chroot" facility that covered SSH, FTP, and other things as well. --Brett
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?6.2.0.14.2.20041220145924.0624c328>