[Gllug] SFTP and chroot
John Edwards
john at cornerstonelinux.co.uk
Sun Apr 10 21:43:40 UTC 2005
On Sun, Apr 10, 2005 at 10:30:24PM +0100, Simon Morris wrote:
> Hello,
>
> I have a server that is hosted remotely and I would like to provide
> sftp access for some other users.
>
> Google tells me I can restrict these people to sftp only (i.e. no
> login environment or bash shell) by adding /usr/lib/sftp-server to
> /etc/shells and setting that as the users default shell.
>
> I haven't tested this bit yet - is it the most effective way to
> restrict a user to sftp access only?
>
> Also google tells me there is no way to chroot users to their home
> directory over SSH without patching and rebuilding sshd.... is that
> also true?
>
> My objective is to allow certain users sftp access *only* and have
> them chrooted to ~ using the path of least resistance :)
>
> Distro is Debian Sarge.
Debian Sarge has at least two packages (rssh and scponly) that
can do a ssh chroot, but from a quick scan of the docs I think
there is a little work involved in setting them up.
--
#---------------------------------------------------------#
| John Edwards Email: john at cornerstonelinux.co.uk |
| |
| A. Because it breaks the logical sequence of discussion |
| Q. Why is top posting bad ? |
#---------------------------------------------------------#
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list