[Freebsd-security] Re: Multi-User Security
Doug Barton
DougB at FreeBSD.org
Mon Jun 7 06:39:12 GMT 2004
On Wed, 19 May 2004, Dan Rue wrote:
> You obviously havn't tried to chroot scponly users.. _that's_ the tricky
> part. Especially if you want it to scale up beyond a handful of users.
> If i'm wrong - fill me in i'd love to hear how to do it.
Have you considered using ~/.ssh/authorized_keys to restrict the account
from tty access? This would allow you to do commands (like scp) without
the risk of the user getting an actual shell.
Doug
--
This .signature sanitized for your protection
More information about the freebsd-security
mailing list