Welcome to WebmasterWorld Guest from 54.159.105.39

Forum Moderators: bakedjake

Message Too Old, No Replies

SFTP on OpenBSD

     
4:52 pm on Sep 18, 2002 (gmt 0)

Junior Member

10+ Year Member

joined:May 2, 2002
posts:141
votes: 0


How can restrain users to their home directories or possibly other directories when using SFTP?
I know that using /etc/ftpchroot I can keep them using regular FTP, but it does't seem to work the same with SFTP.
Thanks
4:58 pm on Sept 18, 2002 (gmt 0)

Senior Member

WebmasterWorld Senior Member 10+ Year Member

joined:June 5, 2001
posts:2728
votes: 8


Have you given them shell accounts also? Do you want them having ssh/telnet access?
9:16 pm on Sept 18, 2002 (gmt 0)

Junior Member

10+ Year Member

joined:May 2, 2002
posts:141
votes: 0


Hello EliteWeb,
no I haven't given them shell accounts yet.
And I wouldn't want them to ssh / telnet.
Why?
6:19 pm on Sept 19, 2002 (gmt 0)

Preferred Member

10+ Year Member

joined:Oct 26, 2000
posts:414
votes: 0


ssh2 has a config option to chroot by user. I have never used it but am looking at it now.

How are you able to only give sftp with out ssh? Is there a seperate server that you start?

When I start sshd I get ssh scp and sftp.

6:25 pm on Sept 20, 2002 (gmt 0)

Junior Member

10+ Year Member

joined:May 2, 2002
posts:141
votes: 0


Hello David,
Yes, ssh2 has something that looks like ftpchroot, but I can't figure out how to make it work.

I haven't restricted users to only sftp, but I would like to do that.

Please let me know I you find how to use the chroot by user. I will if I can figure it out :)

Thanks

6:41 pm on Sept 20, 2002 (gmt 0)

Preferred Member

10+ Year Member

joined:Oct 26, 2000
posts:414
votes: 0


The config line to jail them is..

ChRootUsers smith,jones

it goes in the sshd_config file

The problem is Open ssh does not seem to support it. When I try the server will not restart. So it looks like you have to be running SSH2. Let us know if you get something working.

I don't think you can just give them sftp.