About sftp chroot dev!
Jan Chadima
jchadima at redhat.com
Mon Aug 17 04:52:03 EST 2009
----- "Damien Miller" <djm at mindrot.org> wrote:
> I think this diff is "not even wrong".
>
> -d
>
> On Sun, 16 Aug 2009, Jan Chadima wrote:
>
> > Hi
> > here is the patch.
> > The main goals is to not require chroot tree and do not touch any
> file other than required for data transfers so user can not fake any
> system file. Only internal-sftp is allowed others are aborted before
> execution.
This patch is part of RH patchset, so maybe is need to repair minor changes
caused by the previous patches in the chain.
See openssh-5.2p1-17.fc12 on fedora/devel
--
JFCh
More information about the openssh-unix-dev
mailing list