djm at mindrot.org
Tue Jul 31 07:58:31 EST 2007
On Mon, 30 Jul 2007, Richard Storm wrote:
> > >> http://marc.info/?l=openssh-unix-dev&m=116043792120525&w=2
> > >
> > > The big problem with that patch is that it effectively allows non-root
> > > users to chroot to a directory of their choice.
> How!? Doesn't sftp-server respect received "-C %d" args which are
> hardcoded in ForceCommand, to chroot user in HIS home directory?
by running sftp-server with a -C option of their choice
More information about the openssh-unix-dev