IMHO, setting up a zone for this is overkill. Opensolaris already provides this, see http://blogs.sun.com/janp/entry/the_code_chrootdirectory_code_option
If you need to do this for a previous version, I'd recommend using the latest OpenSSH package - which you can run on a different port (e.g. 2222) if required. Rgds, Mike. -- On Thu, September 10, 2009 10:04, Nicolas Dorfsman wrote: > > Le 10 sept. 09 à 10:22, Pavel Kovalenko a écrit : > >> Hi Nicolas, >> >>>> chrooted scp/sftp accounts? >>> >>> What about using a zone ??? >>> >> >> I don't need such level of virtualization as jail or zones, and only >> 1 external ip, in this case using 1 sshd option (or similar tool) >> to chroot ssh users in their home folders will be enough. > > In such case, I would setup a zone (easy, pretty fast), and use a > nating thru ipfilter (or anything else) to re-direct port 22. > > _______________________________________________ > sysadmin-discuss mailing list > [email protected] > http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. _______________________________________________ sysadmin-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss
