On Wed, Dec 21, 2005 at 12:23:24PM -0500, Fontanez Martin wrote: > Not certain if I am missing the point, but the perms in the box should > restrict what they can actually do.
The trick, of course, is that if they are using sftp, they can change permissions of files they own, and they can move around in the filesystem. You have to make the permissions really restrictive to prevent this, which may be undesireable and/or unworkable. Chrooting can help, but depending on the configuration and needs of the site, may not solve the problem entirely. But switching to scp can make this more workable. -- Derek D. Martin http://www.pizzashack.org/ GPG Key ID: 0x81CFE75D
pgp1J9uoXHWMP.pgp
Description: PGP signature
