Re: Openssh5 Chrootdirectory ?!
- From: Nico Kadel-Garcia <nkadel@xxxxxxxxx>
- Date: Fri, 02 May 2008 22:30:30 +0100
yanaski@xxxxxxxxx wrote:
I from paris !
I've intalled the new openssh 5.0 ! ... i just discovered chroot , i
read many howtos on how chroot works. There are many howtos about how
to input a new shell whitin a chrooted envirnonnement .. but none with
the new openssh !
i'would like to now if someone could help me implemanting bash within
this jail !
i've already manage to use sftp, and my user is well chrooted in his
homedirectory !
well ... if anyone can show me the way ... (:
Thanks.
Lx.
Welcome to the land of philosophy and unsupported features. There have been a number of patches to OpenSSH published to support this, but the maintainers have *NEVER* accepted them into the main codeline. It's not trivial to set up: you need to add the patches, which typically involving setting a user's home directory to use a '/./' to designate where the root of the chroot cage goes, and and install a small environment there, capable of actually running SSH binaries. It's not supported in OpenSSH, previous discussions have shown that it never *will* be supported unless there's a big change in the set of maintainers or their coding practices, and
This is precisely why I tell people who need a secure file-transfer repository to simply use WebDAV over HTTPS. If you really need chroot for OpenSSH, there are a number of guidelines on how to set it up. The set at http://blog.wanderinglost.ca/?p=9 seems quite legible.
.
- References:
- Openssh5 Chrootdirectory ?!
- From: yanaski
- Openssh5 Chrootdirectory ?!
- Prev by Date: ClientAliveCountMax and PAM Authentication
- Next by Date: Re: How to use command line (!) ftp WITH TLS resp SSH encryption?
- Previous by thread: Openssh5 Chrootdirectory ?!
- Next by thread: ClientAliveCountMax and PAM Authentication
- Index(es):
Relevant Pages
|
|
