* [gentoo-user] scp login but confine the user to his home directory?
@ 2007-02-03 3:13 Mark Knecht
2007-02-03 3:41 ` Greg Bur
0 siblings, 1 reply; 3+ messages in thread
From: Mark Knecht @ 2007-02-03 3:13 UTC (permalink / raw
To: gentoo-user
Hi,
I'm wondering if it is possible and/or advisable to set up an
account where a user can scp files in and out of his home directory
using scp but if he logs into the machine using ssh he cannot go
anywhere outside of his home directory?
Mainly the intended application is a group file server but it is
possible that we may want to run some scripts in the account so being
able to ssh in has an advantage over ftp. That said I don't want the
users cd-ing around the machine, etc.
How would I set something like this up?
Thanks in advance,
Mark
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] scp login but confine the user to his home directory?
2007-02-03 3:13 [gentoo-user] scp login but confine the user to his home directory? Mark Knecht
@ 2007-02-03 3:41 ` Greg Bur
2007-02-03 19:15 ` Mark Knecht
0 siblings, 1 reply; 3+ messages in thread
From: Greg Bur @ 2007-02-03 3:41 UTC (permalink / raw
To: gentoo-user
On 2/2/07, Mark Knecht <markknecht@gmail.com> wrote:
> Hi,
> I'm wondering if it is possible and/or advisable to set up an
> account where a user can scp files in and out of his home directory
> using scp but if he logs into the machine using ssh he cannot go
> anywhere outside of his home directory?
>
> How would I set something like this up?
Mark,
Rebuild openssh with the chroot USE flag enabled and then have a look
at the following HOWTO:
http://www.howtoforge.com/chrooted_ssh_howto_debian
It's a bit of work to set up but it works well. We have a similar
setup at work for our shared hosting customers.
Regards,
Greg
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [gentoo-user] scp login but confine the user to his home directory?
2007-02-03 3:41 ` Greg Bur
@ 2007-02-03 19:15 ` Mark Knecht
0 siblings, 0 replies; 3+ messages in thread
From: Mark Knecht @ 2007-02-03 19:15 UTC (permalink / raw
To: gentoo-user
On 2/2/07, Greg Bur <greg.bur@gmail.com> wrote:
> On 2/2/07, Mark Knecht <markknecht@gmail.com> wrote:
> > Hi,
> > I'm wondering if it is possible and/or advisable to set up an
> > account where a user can scp files in and out of his home directory
> > using scp but if he logs into the machine using ssh he cannot go
> > anywhere outside of his home directory?
> >
> > How would I set something like this up?
>
> Mark,
>
> Rebuild openssh with the chroot USE flag enabled and then have a look
> at the following HOWTO:
>
> http://www.howtoforge.com/chrooted_ssh_howto_debian
>
> It's a bit of work to set up but it works well. We have a similar
> setup at work for our shared hosting customers.
>
> Regards,
>
> Greg
Thanks Greg. That looks pretty manageable and easier than some of the
full blown chroots I've built before under Gentoo. Certainly good
enough to try things out and see how it works.
Thanks a lot,
Mark
--
gentoo-user@gentoo.org mailing list
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2007-02-03 19:22 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-02-03 3:13 [gentoo-user] scp login but confine the user to his home directory? Mark Knecht
2007-02-03 3:41 ` Greg Bur
2007-02-03 19:15 ` Mark Knecht
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox