ChrootDirectory on a per key basis

Peter Stuge peter at
Fri Nov 14 07:47:45 EST 2008

Teemu Ikonen wrote:
>  > No, letting users chroot to arbitrary directories introduces
>  > serious security problems.
> OK, so adding chrootdir option to authorized keys is a bad idea.

I think it could be made ok. Non-root filesystem, maybe even mounted
noexec, not letting the user change authorized_keys.


More information about the openssh-unix-dev mailing list