[scponly] scponly chroot vs. Openssh forcecommand
Brian A. Davis
bridavis at comcast.net
Tue Dec 26 23:18:56 EST 2006
Hey Folks,
I saw a recent thread which introduced (to me anyway) the ForceCommand
based on some new OpenSSH functionality, where you can force a user
solely via OpenSSH to a sftp only subsystem.
To copy paste a the example give on the thread:
Match User restricted-user
ForceCommand /usr/libexec/sftp-server
Now, this is basically all I'm looking for, but I'm already running a
chrooted scponly install. However, if I can get all the functionality
out of OpenSSH, I'd like to remove scponly in the interest in keeping
things simple.
I don't need scp access, so I'm thinking the only reason for me to keep
scponly is for the chroot.
Does anyone know if I can chroot my users using the OpenSSH ForceCommand
method? If not, I'll stick with the scponly setup I have.
Thanks,
Brian
More information about the scponly
mailing list