[Bug 1951] New: Add home directory facility for chrooted environments

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Sat Nov 19 04:40:32 EST 2011


https://bugzilla.mindrot.org/show_bug.cgi?id=1951

             Bug #: 1951
           Summary: Add home directory facility for chrooted environments
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: -current
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P2
         Component: sshd
        AssignedTo: unassigned-bugs at mindrot.org
        ReportedBy: darcy at druid.net


Created attachment 2107
  --> https://bugzilla.mindrot.org/attachment.cgi?id=2107
Diffs agains NetBSD 5.1

I find that the internal-sftp mostly does what I want except that it
leaves the user in the root of the chroot area.  I can't make the
user's directory the chroot since that is not owned by root.  So I
added code to allow me to specify the home directory.  So, for example,
I have the following Match stanza in sshd_config:

Match Group sftponly
    ChrootDirectory /u/
    AllowTCPForwarding no
    X11Forwarding no
    ForceCommand internal-sftp
    HomeDirectory /%u/

Now the user is dropped into his own home directory under the chroot
area.

I'm not sure if the name is correct - we don't have to actually specify
his home directory - but I have tested this on NetBSD 5.1 and it works.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list