DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 29th September 2011
bryn1u bryn1u is offline
Port Guard
 
Join Date: May 2009
Posts: 11
Thanked 0 Times in 0 Posts
Default Close users using OpenSSH.

Hi.

I was wandering if i can use OpenSSH to close users in own shell instead using chroot or sysjail. I heard about this metod but i cant find any manual or faq. Maybe someone of you used or using.


Thx.

Last edited by bryn1u; 29th September 2011 at 09:12 AM.
Reply With Quote
  #2   (View Single Post)  
Old 29th September 2011
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,435
Thanked 214 Times in 189 Posts
Default

http://undeadly.org/cgi?action=artic...&mode=expanded

http://undeadly.org/cgi?action=artic...&mode=expanded

http://marc.info/?l=openbsd-misc&m=131722715504856&w=2
Reply With Quote
  #3   (View Single Post)  
Old 29th September 2011
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,435
Thanked 214 Times in 189 Posts
Default

Forgot one -- you were looking for a manual as well. See the sshd_config(5) man page, and search for ChrootDirectory.
Reply With Quote
  #4   (View Single Post)  
Old 29th September 2011
bryn1u bryn1u is offline
Port Guard
 
Join Date: May 2009
Posts: 11
Thanked 0 Times in 0 Posts
Default

I dont want to close sftp. I want to close in SHELL account. Something like chroot but using Openssh. I heard about this case. But someone had to interfere in source code of openssh and i don't know how.
Reply With Quote
  #5   (View Single Post)  
Old 30th September 2011
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,435
Thanked 214 Times in 189 Posts
Default

The instructions are under the ChrootDirectory option in the man page I referred you to. Each application or utility needed by your users must be placed into the directory structure, as described. For an example of that, including supporting libraries, see FAQ 10.16.

Last edited by jggimi; 30th September 2011 at 01:59 AM. Reason: typo and clarification
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
OpenSSH 5.9 arrives J65nko News 0 7th September 2011 12:35 AM
OpenSSH 5.7 released J65nko News 0 25th January 2011 08:16 PM
OpenSSH 5.5 release J65nko News 0 27th April 2010 11:26 PM
OpenSSH 5.4 Release J65nko News 0 9th March 2010 08:48 PM
What is the best kind of OpenSSH? php111 Other OS 3 3rd June 2008 10:32 PM


All times are GMT. The time now is 03:58 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick