>Any ideas on how to reach AFS space from a chroot
>environment? We have users that log into an AFS
>client and run a restricted shell that changes their
>root directory with the chroot command.
>
>Once the root directory is changed, they can no longer
>reach /afs. You cannot define a chroot point that is
>in afs space (as far as I can tell).
I dunno about that. I managed to create an anon ftp in afs space.
First I setup a login directory for user ftp, translating all the
normal anon ftp permission and owner guidelines to appropriate afs
equivalents. Then I used "fs mkm" to mount my /afs/cellname/public
volume a 2nd time in the ftp login directory. Seems like you could
do something similar to mount /afs or /afs/cellname under your
restricted shell's chroot-ed directory.
-Mitch
