Secure Shell
chroot and access to directory OTHER than user's home directory..... Feb 09 2010 11:05PM
Jon Price (jonelwoodprice gmail com) (4 replies)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 03:24PM
Wood Chris tatravelcenters com (1 replies)
Export the directory through NFS. Then have your other users mount the NFS
directory within their own chrooted environment.

Or configure all the users to use the same home directory /Whatever/Drop ,
but they would have to have the same keys. But you would still be able to
log who uploaded what by their usernames.

Chris

From: Jon Price <jonelwoodprice (at) gmail (dot) com [email concealed]>
To: secureshell (at) securityfocus (dot) com [email concealed]
Date: 02/09/2010 06:42 PM
Subject: chroot and access to directory OTHER than user's home
directory.....
Sent by: listbounce (at) securityfocus (dot) com [email concealed]

Hi,

I need to allow multiple users (users connecting from different
machines) access to a box so they can all drop (via sftp) files in a
common drop area, say /Whatever/Drop.
If I use OpenSSH with chroot and a single account "dropaccount", then
all users can access that account via sftp given the appropriate setup
(sshd_config, public keys and such).
The /Whatever/Drop directory is owned by a different account name.
That can't change.

How can I allow these users to access the /Whatever/Drop directory?

Thought maybe a symbolic link from the dropaccount's home directory
over to /Whatever/Drop might work, but it doesn't (and maybe for good
reason). But how can this be done?

Also, I think the issue is the same even if there is just one user
accessing the box this way, ie. the multiple users might just confuse
things here. So could consider just a single user with these
requirements.

Thanks

[ reply ]
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 09:10PM
Lars Nooden (lars curator gmail com)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 05:35AM
Dan Nelson (dnelson allantgroup com)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 04:48AM
Robert Hajime Lanning (robert lanning gmail com)
Re: chroot and access to directory OTHER than user's home directory..... Feb 09 2010 11:47PM
Derek Martin (code pizzashack org) (1 replies)
Re: chroot and access to directory OTHER than user's home directory..... Feb 13 2010 03:49AM
Derek Martin (code pizzashack org)


 

Privacy Statement
Copyright 2010, SecurityFocus