HPE Community
Operating System - HP-UX
1834356 Members
2374 Online
110066 Solutions
New Discussion

chroot'd SSH

 
SOLVED
Go to solution
Hank Eggers
Frequent Advisor

‎10-07-2004 08:58 AM

‎10-07-2004 08:58 AM

chroot'd SSH

Was wondering if anyone has successfully setup a chroot'd SSH/Sftp server?

We need to keep the user from navigating out of their home directory.

Thanks for any insight into this!
0 Kudos
Reply
3 REPLIES 3
Andrew Cowan
Honored Contributor

‎10-07-2004 07:02 PM

‎10-07-2004 07:02 PM

Re: chroot'd SSH

I've used it in many installations and it works pretty flawlessly. As long as you have a relatively new version of OpenSSH, it expects you to have a user "sshd", and all you do is to set this user up with a home-directory in a chroot'ed jail.
0 Kudos
Reply
Sridhar Bhaskarla
Honored Contributor

‎10-07-2004 09:13 PM

‎10-07-2004 09:13 PM

Re: chroot'd SSH

Hi Hank,

You will have to either install a 'chroot' patch (I don't remember on top of my head the URL) and recompile openssh or use the 'command=' feature of authorized_keys file to build a wrapper around.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
Michael Selvesteen_2
Trusted Contributor

‎10-08-2004 05:22 AM

‎10-08-2004 05:22 AM

Solution

Re: chroot'd SSH

HP Secure Shell supports Chroot for both SSH/SFTP. Just refer release notes for installation guide.

You can use ssh_chroot_setup.sh script to
configure chroot environment for users. It can configure an user to use
1. SSH only
2. SFTP only
3. Both SSH/Sftp.

All the best
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.