Secure Shell
chroot and access to directory OTHER than user's home directory..... Feb 09 2010 11:05PM
Jon Price (jonelwoodprice gmail com) (4 replies)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 03:24PM
Wood Chris tatravelcenters com (1 replies)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 09:10PM
Lars Nooden (lars curator gmail com)
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 05:35AM
Dan Nelson (dnelson allantgroup com)
In the last episode (Feb 09), Jon Price said:
> I need to allow multiple users (users connecting from different machines)
> access to a box so they can all drop (via sftp) files in a common drop
> area, say /Whatever/Drop. If I use OpenSSH with chroot and a single
> account "dropaccount", then all users can access that account via sftp
> given the appropriate setup (sshd_config, public keys and such). The
> /Whatever/Drop directory is owned by a different account name. That can't
> change.
>
> How can I allow these users to access the /Whatever/Drop directory?

Chroot the users to a common sftp root instead of their home directory
("/usr/sftpusers/" for example). You will have to tell them to cd to
"/myusername" to write to their private directory, or "/Drop" to upload to
the common dropbox directory.

Another solution might be to leave everyone chrooted in their home
directories, create a /Drop directory in everyone's home dir, and have a
crom job that runs every 5 minutes or so that moves files in
/usr/sftpusers/*/Drop/ that are older than 5 minutes into your other dropbox
directory, where you can process them at your leisure. This won't work if
they are supposed to be able to download files that other users have
uploaded, though.

--
Dan Nelson
dnelson (at) allantgroup (dot) com [email concealed]

[ reply ]
Re: chroot and access to directory OTHER than user's home directory..... Feb 10 2010 04:48AM
Robert Hajime Lanning (robert lanning gmail com)
Re: chroot and access to directory OTHER than user's home directory..... Feb 09 2010 11:47PM
Derek Martin (code pizzashack org) (1 replies)
Re: chroot and access to directory OTHER than user's home directory..... Feb 13 2010 03:49AM
Derek Martin (code pizzashack org)


 

Privacy Statement
Copyright 2010, SecurityFocus