How To Limit SFTP client's access?

• Previous message: simonst_at_wellsfargo.com: "sshd preserves $MAIL from compiler system"
• In reply to: Adam Shostack: "Re: Strange SCP problem"
• Next in thread: Chris Callahan: "PAM issues with 3.7p and 3.8p"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <secureshell@securityfocus.com>
Date: Wed, 24 Mar 2004 07:47:21 +0100

I am using OpenSSH to allow SFTP access to our server. For I don't want
everyone to see the complete directory structure (best would be, user can
only see the structure inside his very own home directory and is not able to
leave it to superdirs or siblingdirs), I am desperately seeking a method to
limit navigation without the need to remove "o+r" rights on every file and
directory of our server. Unfortunately I did not find that information in
the OpenSSH documentation.

Any idea welcome! :-)

Markus

----- Original Message -----
From: "Adam Shostack" <adam@homeport.org>
To: "Darren Tucker" <dtucker@zip.com.au>
Cc: <secureshell@securityfocus.com>
Sent: Tuesday, March 23, 2004 4:05 AM
Subject: Re: Strange SCP problem

> On Tue, Mar 23, 2004 at 01:51:01PM +1100, Darren Tucker wrote:
> | Adam Shostack wrote:
> | >I'm having a problem where I can copy files from a server to my
> | >laptop, but not the other way. It's not the scp failure listed in FAQ
> | >2.9, that test works fine.
> | >
> | >When I attempt to do a copy, I see the "progress bar" go, the file is
> | >created on the other side, and I get an eventual time-out.
> |
> | Maybe this?
> | http://www.snailbook.com/faq/mtu-mismatch.auto.html
>
> Bing! Give the man a gold star!
>
> Any advice on path mtu discovery tools that let me set something
> bigger than 576?
>
> Adam
>
>

• Previous message: simonst_at_wellsfargo.com: "sshd preserves $MAIL from compiler system"
• In reply to: Adam Shostack: "Re: Strange SCP problem"
• Next in thread: Chris Callahan: "PAM issues with 3.7p and 3.8p"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]