Re: Is it possible to chroot scp?

To: jurie@firefly.coggles.net
Cc: debian-security@lists.debian.org
Subject: Re: Is it possible to chroot scp?
From: Siggi Langauf <siggi@debian.org>
Date: Mon, 12 Mar 2001 13:18:56 +0100 (CET)
Message-id: <[🔎] Pine.LNX.4.21.0103121311080.22481-100000@darkwing.informatik.uni-stuttgart.de>
In-reply-to: <[🔎] 20010311213054.D17537@coggles.net>

Hi,

On Sun, 11 Mar 2001 jurie@firefly.coggles.net wrote:

> I have been setting up a webserver that users need to acess remotely.
> The problem is that I don't like the way that ftp sends passwords
> plaintext.  I am currently useing proftpd, as I also require the
> ability to chroot users into thier own directories.  Now, essentialy
> what I need is to have windoze users login w. some sort of point &
> click client, be able to drag stuff too & from the server, and not
> be able to mess with, or even know about, other peoples' files.
> (I have to assume that they cannot use DOS, let alone
> do an scp from it)  I have found a few, such as ixplorer and winSCP,
> however, again, they allow one to specify a directory above thier
> home.
> 
> I have heard that the commercial ssh version offers the ability to
> chroot, but I would rather stay with OpenSSH if I can.
> 
> Does anyone have any suggestions, short of doing a chmod a-r * -R
> from / ?

Have you considered https POSTs with write permissions only for users'
home directory?
Its fairly easy to setup with apache, uses encryption (SSL) and allows
fine-grained access control.
Plus, even Netscape composer supports such uploads directly...

Regards,
	Siggi

Reply to:

References:
- Is it possible to chroot scp?
  - From: jurie@firefly.coggles.net

Prev by Date: [ot] our hero (was: Is it possible to chroot scp?)
Next by Date: Re: Kernel 2.2.15 hole ?
Previous by thread: Re: Is it possible to chroot scp?
Next by thread: potato camediaplay security problem
Index(es):
- Date
- Thread