thr3ads.net - openssh bugs - [Bug 177] provide chroot option for sftp-server [Sep 2006]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

bugzilla-daemon at mindrot.org

2006-Sep-05 20:38 UTC

[Bug 177] provide chroot option for sftp-server

http://bugzilla.mindrot.org/show_bug.cgi?id=177





------- Comment #10 from openssh-bugs at thequod.de  2006-09-06 06:38 -------
What about using PAM for sftp-server?

Currently, as it seems, only /etc/pam.d/ssh gets used (also for the
sftp subsystem), but I thought that it would be a nice idea to use
/etc/pam.d/sftp-server instead, if it is available.

This way, you could use
  session    required   pam_chroot.so
in /etc/pam.d/sftp-server and it would chroot to the path given in
/etc/security/chroot.conf from within sftp-server (and therefor should
also not require to have any libs in each chroot).

Does this sound reasonable? Should I open a new tracker wish item for
that?




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

openssh bugs - Sep 2006 - [Bug 177] provide chroot option for sftp-server

[Bug 177] provide chroot option for sftp-server