Re: [Jailkit-users] Restricting users to their home directory

jailkit-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Jailkit-users] Restricting users to their home directory

From:	Olivier Sessink
Subject:	Re: [Jailkit-users] Restricting users to their home directory
Date:	Fri, 01 Aug 2008 07:52:37 +0200
User-agent:	Thunderbird 2.0.0.16 (X11/20080724)

Thomas Jreige wrote:

Hi Everyone,
I am using Jailkit to lock down SCP and SFTP. I have followed theinstructions on the Jailkit site in order to do this. One thing I amhaving trouble with is locking users to their home directory./home/sftproot is being used as the jail./home/sftroot/./home/test WHen test logs in using SFTP want torestrict that user to this directory only. I dont want them to move tothe lower directoris like /./etc as the /./etc/group file can bedownloaded now as we speak.Is there a fix for this?

Jailkit can only do chroot jail tricks, it cannot change theapplications you run inside the jails. So if the sftp server cannot dothis, jailkit will not change that.

You may, however, put every user inside their own jail. That iseffectively the same as restricting them to their own homedir.

Another thing you might want to look at, is to change permissions on/home. I always forget how to change them such that you can go into yourown home directory but you cannot list other dirs.


regards,
        Olivier

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Jailkit-users] Restricting users to their home directory, Olivier Sessink <=
- Re: [Jailkit-users] Restricting users to their home directory, Thomas Jreige, 2008/08/01

Next by Date: Re: [Jailkit-users] Restricting users to their home directory
Next by thread: Re: [Jailkit-users] Restricting users to their home directory
Index(es):
- Date
- Thread