Limitting SSH access

Wed May 4 12:11:07 UTC 2011

On 4 May 2011 13:35, Matthew Seaman <m.seaman at infracaninophile.co.uk> wrote:

> On 04/05/2011 10:08, Jack Raats wrote:
> > I have a question concerning SSH op a FreeBSD 7.4-STABLE server.
> >
> > Is it possible to limit the SSH access?
> > I want t o restrict a user to his own home directory.
> > So that if he connects to the server with SSH he only can go to his own
> home dir.
> > Also the same for sftp...
> >
>
> I believe you will need to install a version of OpenSSH from ports to
> get that functionality.  It's the CHROOT config option in
> security/openssh-portable
>
>        Cheers
>
>        Matthew
>
> --
> Dr Matthew J Seaman MA, D.Phil.                   7 Priory Courtyard
>                                                  Flat 3
> PGP: http://www.infracaninophile.co.uk/pgpkey     Ramsgate
> JID: matthew at infracaninophile.co.uk               Kent, CT11 9PW
>
>
Hello,

It should work with the base openssh on 7.4. Check your version with sshd
-v.
Here, search for chroot(or use google :)):
http://www.openbsd.org/cgi-bin/man.cgi?query=sshd_config&sektion=5

Regarding ssh login, I usually use "rbash" from the ports, that restricts
the user from leaving his or her home directory!

Regards,

Balazs Mateffy.