[CentOS] scp setup jailed chroot on Centos7

Rainer Duffner rainer at ultra-secure.de
Fri Oct 20 22:41:20 UTC 2017


> Am 20.10.2017 um 15:58 schrieb Adrian Jenzer <a.jenzer at herzogdemeuron.com>:
> 
> Dear all
> 
> I'm looking for instructions on how to setup a jailed chroot directory for user which needs to upload via scp to the server.
> Especially I miss clear instructions about what needs to be in the jailed directory available, like binaries, libraries, etc...
> Without jail I get it to work, but I want to prevent user downloading for example /etc folder from the server.
> 
> Does anybody have a link or list valid for Centos7
> 



Can’t you use SFTP?

AFAIK, sftp automatically chroots a user with no valid shell (provided the home directory is owned by root and not writeable by the user and you use Subsystem internal-sftp).






More information about the CentOS mailing list