[Freebsd-security] Re: Multi-User Security

Doug Barton DougB at FreeBSD.org
Mon Jun 7 06:39:12 GMT 2004


On Wed, 19 May 2004, Dan Rue wrote:

> You obviously havn't tried to chroot scponly users.. _that's_ the tricky
> part.  Especially if you want it to scale up beyond a handful of users.
> If i'm wrong - fill me in i'd love to hear how to do it.

Have you considered using ~/.ssh/authorized_keys to restrict the account 
from tty access? This would allow you to do commands (like scp) without 
the risk of the user getting an actual shell.

Doug

-- 

     This .signature sanitized for your protection



More information about the freebsd-security mailing list