http://bugzilla.mindrot.org/show_bug.cgi?id=177
------- Comment #10 from openssh-bugs@thequod.de 2006-09-06 06:38 -------
What about using PAM for sftp-server?
Currently, as it seems, only /etc/pam.d/ssh gets used (also for the
sftp subsystem), but I thought that it would be a nice idea to use
/etc/pam.d/sftp-server instead, if it is available.
This way, you could use
session required pam_chroot.so
in /etc/pam.d/sftp-server and it would chroot to the path given in
/etc/security/chroot.conf from within sftp-server (and therefor should
also not require to have any libs in each chroot).
Does this sound reasonable? Should I open a new tracker wish item for
that?
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
------- Comment #10 from openssh-bugs@thequod.de 2006-09-06 06:38 -------
What about using PAM for sftp-server?
Currently, as it seems, only /etc/pam.d/ssh gets used (also for the
sftp subsystem), but I thought that it would be a nice idea to use
/etc/pam.d/sftp-server instead, if it is available.
This way, you could use
session required pam_chroot.so
in /etc/pam.d/sftp-server and it would chroot to the path given in
/etc/security/chroot.conf from within sftp-server (and therefor should
also not require to have any libs in each chroot).
Does this sound reasonable? Should I open a new tracker wish item for
that?
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs