I am using ProFTPd because it taps into my LDAP directory for user authentication. THAT i would really like to chroot the directory. Anonymous is chrooted but that is about it.
Ben
Mike Johnson wrote:
On Sun, 3 Nov 2002, Ben Simpson wrote:First, what -exactly- are you trying to do? Are you trying to allow
chroot an ftp and or ssh server so that user can't just cd to the real "/"
users to authenticate and get a login shell? Are you trying to allow
sftp and scp? What are your needs?
As for ftpd, which server are you using?
For WU-FTPD: http://www.landfield.com/wu-ftpd/docs/guest-howto.html
For ProFTPD: http://www.proftpd.org/docs/faq/proftpdfaq-5.html#ss5.12
There's others, Google is your friend.
Matthew Todd [[EMAIL PROTECTED]] wrote:
Hi Ben,It's not so much a black art as it is something that should be done
I sort of did this for an ssh (& thus, sftp) server a few months ago.
These pages were helpful:
http://mail.incredimail.com/howto/openssh/
http://ulf.zeitform.de/sshchroot/
Back then, I got the impression that this was something of a black art.
These kinds of patches had been rejected for the main OpenSSH development
tree, and I'm not sure if any ever made it in.
outside of the ssh server. I used to subscribe to the idea of doing the
chroot in sshd, but after it became a pain in the ass to maintain the
patch (yes, mine was one of the rejected patches), and after reading the
arguments, I've come to the conclusion that it's better done in the
shell.
I use rssh as my shell of choice, hacked a bit to add the additional
commands that I need:
http://pizzashack.org/rssh/
Mike
-- Ben Simpson, MCSE Systems Engineer Voice and Fax Number: 1-877-718-7627 x401
Silex Technologies http://www.silextech.com _______________________________________________ TriLUG mailing list http://www.trilug.org/mailman/listinfo/trilug TriLUG Organizational FAQ: http://www.trilug.org/~lovelace/faq/TriLUG-faq.html
