On Mon, Apr 17, 2000 at 11:00:21PM -0500, Todd M. Wilkinson wrote:
> Upon looking at the new /etc/ssh2/sshd2_config file in the new release of
> 2.1, I noticed
> two new entires:
>
>
> # ChRootUsers ftp,guest
> # ChRootGroups guest
>
>
> Looking at the code revealed little ( I just grepped for the above )
> so far, nothing in the documentation as far as I can see. Anyone care
> to comment on the above?
Gotta love those undocumented features ;) Here's what it does, you can
set the user's home directory to whatever you want (at least as root :),
then if you add the username to ChRootUsers, that (those) user account(s)
will be chrooted to their home directory. If you wish to have a group defined
(in /etc/group) that you want to have in a chrooted environment, you can use
the ChRootGroups configuration.
Here's an example:
ChRootUsers anne, tatu, sami
ChRootGroups ssh
Basically anyone with the username listed or in the group ssh will have
a chrooted environment when they login through Secure Shell.
-Anne
________________________________________________________________________
Anne Carasik, Principal Consultant | Any two consenting adults can rub
SSH Communications Security, Inc. | two primes together to create
Email: [EMAIL PROTECTED] | a public keypair" - R. Thayer
