Re: [PATCH] sftp-server Restricted Access

This is a discussion on Re: [PATCH] sftp-server Restricted Access within the OpenSSH Development forums, part of the Networking and Network Related category; Julien Demoor wrote: > Hello, > > This patch makes it possible to restrict sftp sessions to a certain > ...

		Usenet Forums > Networking and Network Related > OpenSSH Development
Re: [PATCH] sftp-server Restricted Access

LinkBack

Thread Tools

Display Modes

#1 (permalink)

06-25-2006

Damien Miller

Posts: n/a

Re: [PATCH] sftp-server Restricted Access

Julien Demoor wrote:
> Hello,
>
> This patch makes it possible to restrict sftp sessions to a certain
> subtree of the file system on a per-Unix account basis.

There has been a similar patch in bugzilla for a while:

http://bugzilla.mindrot.org/attachment.cgi?id=586

I'm looking at adding the ability to specify commandline arguments to
SubSystem declarations in sshd_config, but it is a little fiddly as any
change has to gracefully cope with forced commands in authorized_keys
files as well as the fairly common practice of making sftp-only accounts
by making sftp-server the user's login shell.

It will be easier when Darren's "Match" stuff is done, because we can
reuse it to do forced-commands in sshd_config.

-d

_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@mindrot.org
http://www.mindrot.org/mailman/listi...enssh-unix-dev

« Previous Thread | Next Thread »

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts vB code is On Smilies are Off [IMG] code is Off HTML code is Off Trackbacks are On Pingbacks are On Refbacks are On

All times are GMT +1. The time now is 10:41 PM.