[CentOS] rssh / scponly

Gregory P. Ennis PoMec at PoMec.Net
Mon Mar 28 02:12:01 UTC 2011

> Am 27.03.2011 um 22:57 schrieb John R Pierce:
>> On 03/27/11 1:03 PM, Rainer Duffner wrote:
>>> If you use sftp, it can be chroot'ed by default (see man-page).
>>> (In reasonably recent version of sshd)
>> I gather thats a sshd somewhat newer than the one included in CentOS 5
>> ?
> I don't know.
> ;-)
> I only used it in FreeBSD - but it's included there since at least 7.2.
> That was released in May 2009.
> OpenSSH 5.1p1
> Looking, sshd in my latest CentOS shows v 4.6p2

rhel / centos contains openssh with backported chroot:

rpm -q --changelog openssh-server | grep chroot
- minimize chroot patch to be compatible with upstream (#522141)
- tiny change in chroot sftp capability into openssh-server solve ls
speed problem (#440240)
- add chroot sftp capability into openssh-server (#440240)
- enable the subprocess in chroot to send messages to system log




That is very interesting.  I found the same on my OpenSSH_4.3p2 system.
I tried to use it, but could not make it work.   Are you aware of any
documentation or others that have made this work.


More information about the CentOS mailing list