ssh-dummy-shell

Markus Friedl markus at openbsd.org
Sat Nov 24 22:59:16 EST 2001


On Fri, Nov 23, 2001 at 09:51:07PM +0200, Pekka Savola wrote:
> Note that AFAIR, ssh.com provides chroot, which may be part of the reason 
> they felt ssh-dummy-shell is useful.

sure, but i don't want something like their ssh-chrootmgr(1).

copying ssh-dummy-shell and sftp-server to every chrooted
users homedir.

> (I really would like to start transitioning ftp+chroot people to
> sftp+chroot, for password encryption if nothing else, but that's still a
> bit problematic).

i've not seen a useful patch.

but chroot $HOME is a bad idea. it has to be chroot $HOME/subdir,
otherwise the user can edit .ssh and other .-files (.forward, etc).

-m



More information about the openssh-unix-dev mailing list