hi there,
I just do some testing with sftp access and I stumbled about some things
I dont get.
if I use the chroot I would asume the user cant browse to the root dir
but it seems he can.
Do I get the whole chroot thing wrong here ?
I set sshd up to just use key auth and gave the user a nologin because I
just want him to use sftp. Ichecked it with a shell so I know the key
gets accepted but with the nologin and sftp I cant log in.
So it seems the statement "we dont need a shell for sftp" is not working.
I used a diffrent home dir for the sftp users and applied suggested
permissions and ownership but it doesnt seems to work
/var/sftp <- root:sftpuser 0100
/var/sftp/testuser <- testuser:sftpuser 0750
the basic thing here is can I prevent a sftp user to browse higher then
his own home dir (i dont want him to see my directory layout at all ).
If this is possible can I just use key auth for this? and if the first 2
questions get a yes ... whats wrong with my setup :-P
since this is just a test thing I can post the sshd_config if needed
regards
--
Markus Rosjat fon: +49 351 8107223 mail: ros...@ghweb.de
G+H Webservice GbR Gorzolla, Herrmann
Königsbrücker Str. 70, 01099 Dresden
http://www.ghweb.de
fon: +49 351 8107220 fax: +49 351 8107227
Bitte prüfen Sie, ob diese Mail wirklich ausgedruckt werden muss! Before you
print it, think about your responsibility and commitment to the ENVIRONMENT
