[scponly] Hiding directories...

[Paul Hyder]

The modifications needed to support this go far beyond just changing
scponly; system utilities, ssh code, etc.  Main problem would be to
hide /etc, /lib, and /usr/lib.  (e.g. to move the contents of
${jail}/lib would require determining exactly what code needs to
be modified and where)

The default script builds individual jails that would hide users
from each other.  Scponly can also put the user into a sub directory
on login so there isn't visual clutter.  True, there isn't anything to
stop a user from exploring the jail but there isn't much to see.
    Paul Hyder
    NOAA Earth System Research Laboratory, Global Systems Division
    Boulder, CO

Hammad wrote:
> Hello guys:
> 
> Great job on this scponly stuff. Keep up the good work. I was just
> wondering if
> its too much trouble to make the 'jail' hidden from user when he logs in by
> changing the jail directory structure and appending '.' (dot) to every
> directory except the one user suppose to put files in.
> 
> For example:
> 
> bin  ---> .bin
> lib  ---> .lib
> usr  ---> .usr
> etc  ---> .etc
> 
> I know user can see it if he wants too but at least this way its hidden
> from
> most users who do not know how to work it around.
> 
> And by the way, my compile for new version fails on debian. I had to
> take out
> word 'extern' from helper.c in order to compile successfully. Any idea,
> why?
> 
> Lastly, I was trying to compile without sftp-server but it doesn't seems to
> work. I tried passing 'without-sftp-server', 'with-sftp-server=no',
> 'disable-sftp' while compiling but I was able to login with winscp using
> only
> SFTP. Not sure how can I disable SFTP.
> 
> Thanks again
> 
> -Hammad
> 
> 
> 
> ----------------------------------------------------------------
> This message was sent by briskSolutions.com mail server
> 
> 
> 
> _______________________________________________
> scponly mailing list
> scponly at lists.ccs.neu.edu
> https://lists.ccs.neu.edu/bin/listinfo/scponly