public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed
From: "Mark Knecht" <markknecht@gmail.com>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] scp login but confine the user to his home directory?
Date: Sat, 3 Feb 2007 11:15:20 -0800	[thread overview]
Message-ID: <5bdc1c8b0702031115u688f46e3v394ff77bfc0b0353@mail.gmail.com> (raw)
In-Reply-To: <976cb44f0702021941j6de6da69u8888349287eda82@mail.gmail.com>

On 2/2/07, Greg Bur <greg.bur@gmail.com> wrote:
> On 2/2/07, Mark Knecht <markknecht@gmail.com> wrote:
> > Hi,
> >    I'm wondering if it is possible and/or advisable to set up an
> > account where a user can scp files in and out of his home directory
> > using scp but if he logs into the machine using ssh he cannot go
> > anywhere outside of his home directory?
> >
> >    How would I set something like this up?
>
> Mark,
>
> Rebuild openssh with the chroot USE flag enabled and then have a look
> at the following HOWTO:
>
> http://www.howtoforge.com/chrooted_ssh_howto_debian
>
> It's a bit of work to set up but it works well.  We have a similar
> setup at work for our shared hosting customers.
>
> Regards,
>
> Greg

Thanks Greg. That looks pretty manageable and easier than some of the
full blown chroots I've built before under Gentoo. Certainly good
enough to try things out and see how it works.

Thanks a lot,
Mark
-- 
gentoo-user@gentoo.org mailing list



      reply	other threads:[~2007-02-03 19:22 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2007-02-03  3:13 [gentoo-user] scp login but confine the user to his home directory? Mark Knecht
2007-02-03  3:41 ` Greg Bur
2007-02-03 19:15   ` Mark Knecht [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=5bdc1c8b0702031115u688f46e3v394ff77bfc0b0353@mail.gmail.com \
    --to=markknecht@gmail.com \
    --cc=gentoo-user@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox