On Wed, 22 Apr 2009 17:15:04 +0100
Hari Sekhon <hpsekhon (at) googlemail (dot) com [email concealed]> wrote:

> J. Bakshi wrote:
> > I am running a remote suse server and need to give ssh access to
> > the users who can work on their particular web folder only. The
> > version of ssh server is openssh-5.0p1-21.1
> >
> > I have already did huge google search but could not find any sshd
> > features which can allow ssh users to restrict them in their home
> > directory. I have found some documentations where chroot or jailkit
> > is used to achieve this and these need some more configuration and
> > obviously "chown root:root <home-folder>" . But I need an option
> > which simply restrict ssh users so that they can't browse beyond
> > their home directory. It is also not possible to do "chown
> > root:root <home-folder>" as the folders which are used as home
> > directory are actually web folder under apache htdocs having apache
> > permission. I don't need sftp but ssh access. Is it really
> > impossible to have this feature through ssh technology
> It should be entirely possible in openssh. I've done a similar thing
> with sftp (but that was sftp specific and not openssh really).

yes, I have also read it in the openssh doc to support sftp which has been made inbuilt in openssh
Your next information is very much welcome in my case. If openssh supports chrooting there is nothing more nice feature like this but the folder where I like to give ssh access must continue running with apache permisiion and not as root:root

>
> OpenSSH can support chrooting, in which case you simply follow the
> std chroot methods. I'm not sure if it's an integrated compile time
> option or if it's a 3rd party patch, but it is an integrated compile
> time option on Gentoo systems, so worst case scenario if you are
> working with another distro, would be to patch the source and compile
> yourself to get this to work.
>
> -h
>

[ reply ]