On Mon, Sep 13, 2010 at 10:59:56AM +0200, Pete Vickers wrote:
> I'm trying to set up a box such that normal users are chroot'd to their home
> directories, and can only use sftp.
> Any clues what I'm doing wrong ? Google seems to hint that the chroot
> directory might have to be owned by root, but that seems strange,
> since users couldn't then write files in their own home ?
A chroot jail where the new root isn't owned by the root user is
effectively impossible to secure. Set the home directories to
/home/<user>/files and chroot to /home/<user>, or somesuch.
Joachim
--
TFMotD: autoconf (4/Alpha) - diagnostics from the autoconfiguration code
http://www.joachimschipper.nl/
