[snip]My suggestion of jail was based no my previous suggestion of ssh. IfUsing a chroot you can do this. I've been using the jail tools which make it easy to set stuff up:
http://www.gsyc.inf.uc3m.es/~assman/jail/index.html
The administrator must create shell accounts, add the user to the jail, and somehow synchronize the password files if they change over time. Then, create a jail for each user? Share jail space between users? Who knows what the best answer is here.
[snip]As for the syncronization of files inside and outside of the chroot tree I've been meaning to do some experiments with mount with the --bind option. --bind is a new mount feature in 2.4.0 that allows you to remount parts of the file hierarchy to different places at the same time which is handy inside of a chroot.
Assuming the use of a pure ssh/scp/sftp/jail solution for file transfer:
As far as scalability, would you suggest creating a jail filesystem for each user, or a single jail shared across multiple users? I like the privacy of an exclusive jail, but the duplicated filesystem and admin overhead seems a bit much.
Also, can anybody think of a good way to create the effect of presenting a single directory choice ("/" for instance) when the user logs in through an scp/sftp client program? This is more for the user's convenience than anything else, but it is still important in the big scheme of things.
-- David Davis
_______________________________________________ RLUG mailing list [EMAIL PROTECTED] http://www.rlug.org/mailman/listinfo/rlug
