[CentOS] rssh / scponly

Gregory P. Ennis PoMec at PoMec.Net
Mon Mar 28 02:12:01 UTC 2011


> Am 27.03.2011 um 22:57 schrieb John R Pierce:
>
>> On 03/27/11 1:03 PM, Rainer Duffner wrote:
>>> If you use sftp, it can be chroot'ed by default (see man-page).
>>> (In reasonably recent version of sshd)
>>
>> I gather thats a sshd somewhat newer than the one included in CentOS 5
>> ?
>
>
> I don't know.
> ;-)
> I only used it in FreeBSD - but it's included there since at least 7.2.
> That was released in May 2009.
> OpenSSH 5.1p1
>
> Looking, sshd in my latest CentOS shows v 4.6p2

rhel / centos contains openssh with backported chroot:

rpm -q --changelog openssh-server | grep chroot
- minimize chroot patch to be compatible with upstream (#522141)
- tiny change in chroot sftp capability into openssh-server solve ls
speed problem (#440240)
- add chroot sftp capability into openssh-server (#440240)
- enable the subprocess in chroot to send messages to system log

--
Eero

-----------------------------

Eero,

That is very interesting.  I found the same on my OpenSSH_4.3p2 system.
I tried to use it, but could not make it work.   Are you aware of any
documentation or others that have made this work.

Greg





More information about the CentOS mailing list