|Subject:||Re: [Jailkit-users] Restricting users to their home directory|
|Date:||Fri, 01 Aug 2008 07:52:37 +0200|
|User-agent:||Thunderbird 220.127.116.11 (X11/20080724)|
Thomas Jreige wrote:
Hi Everyone,I am using Jailkit to lock down SCP and SFTP. I have followed the instructions on the Jailkit site in order to do this. One thing I am having trouble with is locking users to their home directory. /home/sftproot is being used as the jail. /home/sftroot/./home/test WHen test logs in using SFTP want to restrict that user to this directory only. I dont want them to move to the lower directoris like /./etc as the /./etc/group file can be downloaded now as we speak. Is there a fix for this?
Jailkit can only do chroot jail tricks, it cannot change the applications you run inside the jails. So if the sftp server cannot do this, jailkit will not change that.
You may, however, put every user inside their own jail. That is effectively the same as restricting them to their own homedir.
Another thing you might want to look at, is to change permissions on /home. I always forget how to change them such that you can go into your own home directory but you cannot list other dirs.
|[Prev in Thread]||Current Thread||[Next in Thread]|