While using internal sftp server, need to access files outside chroot

Ben Lindstrom mouring at eviladmin.org
Fri Jun 8 08:15:49 EST 2012

The major edge case you need to worry about is the perl deamon moving/copying before sftp is done.  A move to the same partition isn't a problem as sftp still has the file descriptor, but a copy or a move to another partition will result in corrupted data.

The easiest solution if clients are disconnected more often than connected is to skip all active inboxes with sftp sessions associated with them.

- Ben

On Jun 7, 2012, at 5:06 PM, Raghu Udupa wrote:

> Angel,
> I do not think I can chroot to that dir( basically it is a queue directory that contains all incoming files from various users queued for subsequent processing). After thinking a little bit more, have a perl daemon to monitor inboxes and move it the common queue dir is the best solution(your 2nd idea). This requires minimal customization on ssh-side and is very clean....
> Thanks,
> Raghu
> -----Original Message-----
> From: Ángel González [mailto:keisial at gmail.com] 
> Sent: Thursday, June 07, 2012 5:57 PM
> To: Raghu Udupa
> Cc: 'openssh-unix-dev at mindrot.org'
> Subject: Re: While using internal sftp server, need to access files outside chroot
> On 07/06/12 23:14, Raghu Udupa wrote:
>> Angel,
>> I need to provide a set of users only SFTP access. But files these users put need to be copied to a generic queue directory.
> Why? Can they be chrooted to that queue directory?
> _______________________________________________
> openssh-unix-dev mailing list
> openssh-unix-dev at mindrot.org
> https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev

More information about the openssh-unix-dev mailing list