chroot ssh logins

Mailing List

Home

Forum Home

Linux - General Red Hat Linux discussion list

Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)

Installation - Getting started with Red Hat Linux

Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)

Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)

Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)

Apache Web Server

Oracle database, Microsoft SQL server ...

Subjects

•	application/x mplayer2 plugin
•	RPM error: db4 error(16) from dbenv >remove: Device or resource busy
•	Command stream end of file while reading
•	X Windows problem (xauth)
•	Upgrading openoffice 1 1 rpm
•	FTP: connection refused
•	FTP: connection refused
•	mount: /dev/cdrom: is not a valid block device
•	Dell Precision 650, RedHat 9, no sound
•	how to trace the cause resulting in the crash of bind server
•	Virus on the list
•	UNINSTALL RPM MYSQL
•	usb pen drives: mounting as a user
•	broadcom network interface
•	make mrproper
•	sendmail configuration on redhat
•	Couldn 't open PID file /var/run/named/named pid Permission denied
•	Promise 378 controller
•	kernel 2 6 and /dev/sound/mixer not found
•	Problem using up2date
•	mrtg step by step howto/configuration for a newbie?
•	Compiling and Installing Kernel 2 6
•	Can 't locate module ppp0, can 't locate module ppp compress 21
•	HOW I CAN MAKE BOOTABLE FLOPPY DISKET
•	Lotus Notes under Wine
•	/etc/security/limits conf question
•	Intel E/1000 driver
•	Command stream end of file while reading
•	rpm database corrupt
•	qla2300 modules

chroot ssh logins

chroot ssh logins

2004-03-11 - By Mike Kercher

Back

Reply: 1 2 3 4

You'd have to have a copy of cp, mkdir, mv, rm, etc in ~/bin or something
like that then. Most of these reside in /bin and the user would not be able
to execute them if you lock them down to ~ It seems like I recall a patch
that you can apply to the ssh source prior to compilation that would allow
you to jail a user to his/her ~

A quick search on Google:

http://tinyurl.com/24fxt

Mike

> -- --Original Message-- --
> From: shrike-list-admin@(protected)
> [mailto:shrike-list-admin@(protected)] On Behalf Of Christopher Davis
> Sent: Thursday, March 11, 2004 12:25 PM
> To: shrike-list@(protected)
> Subject: RE: chroot ssh logins
>
> Mike:
>
> > -- --Original Message-- --
> > From: shrike-list-admin@(protected)
> > [mailto:shrike-list-admin@(protected)]On Behalf Of Mike Burger
> > Sent: Thursday, March 11, 2004 6:34 AM
> > To: shrike-list@(protected)
> > Subject: Re: chroot ssh logins
> >
> >
> > You could try setting their shell to rsh (if it's
> > available on your
> > system)...on may *nix systems, rsh is a
> > restricted shell, not allowing
> > them to do much outside of their home dir.
> >
> > Keep in mind that chrooting them, however, as you
> > describe below, means
> > that they can't run most of the basic commands
> > that live in /bin,
> > /usr/bin, etc.
> >
> That's exactly what I'm trying to accomplish. My goal is to
> convert an ftp server to ssh only. I do not want regular
> users to have any more capabilities than to upload/download
> files, copy/move/rename files, create directories and ch
> into the directories in their home directory -- all without
> any of these activities being able to be executed any higher
> than their home directory.
>
> I tried rsh, but once connected via ssh I'm still able to
> move around the filesystem.
>
> Thanks!
> Christopher Davis
>
>
>
> --
> Shrike-list mailing list
> Shrike-list@(protected)
> https://www.redhat.com/mailman/listinfo/shrike-list
>

--
Shrike-list mailing list
Shrike-list@(protected)
https://www.redhat.com/mailman/listinfo/shrike-list

Earn $52 per hosting referral at Lunarpages.