[Bug 177] provide chroot option for sftp-server

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Sep 6 06:38:28 EST 2006


http://bugzilla.mindrot.org/show_bug.cgi?id=177





------- Comment #10 from openssh-bugs at thequod.de  2006-09-06 06:38 -------
What about using PAM for sftp-server?

Currently, as it seems, only /etc/pam.d/ssh gets used (also for the
sftp subsystem), but I thought that it would be a nice idea to use
/etc/pam.d/sftp-server instead, if it is available.

This way, you could use
  session    required   pam_chroot.so
in /etc/pam.d/sftp-server and it would chroot to the path given in
/etc/security/chroot.conf from within sftp-server (and therefor should
also not require to have any libs in each chroot).

Does this sound reasonable? Should I open a new tracker wish item for
that?




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.



More information about the openssh-bugs mailing list