[TriLUG] SCP, Chroot

[Cristobal Palmer]

If what you're ultimately trying to do is let users upload files to
you, why not set up a web form? You could use the WOT (web of trust)
to get a certificate that would let you do encryption. I know there
are several members of the LUG who can help you with getting a WOT
certificate (free).

I think it'd be more time-consuming and difficult to create the jail
you're thinking of than to write up a PHP (or other) form.

Somebody please correct me if this is a very wrongheaded solution.

-CMP

On 1/16/06, Rick DeNatale <rick.denatale at gmail.com> wrote:
> On 1/16/06, Shawn Hood <shawn.hood at favoriteagent.com> wrote:
> > Take a look at rssh.  I believe it is aimed at the functionality you
> > are seeking.
> >
> > http://sourceforge.net/projects/rssh/
>
> That looks like it's just a specialized shell which only allows scp
> and sftp. But that doesn't seem to be what the OP is looking for.  I
> interpret his request as looking for a way to control either the
> visibility or permissions to files differently depending on whether a
> user is logged on via ssh or some other means.
>
> Some more ideas may be found her
> http://www.fuschlberger.net/programs/ssh-scp-chroot-jail/
>
> But this is setting up new restricted users instead of restricting
> existing users when they are coming in through ssh.
>
> I don't think that THAT can be done.  SSH doesn't have any per-user
> configuration as far as I can see.  There may be a way for a shell to
> know if it's talking over an SSH connection, but I'm not aware of it.
>
> --
> Rick DeNatale
>
> Visit the Project Mercury Wiki Site
> http://www.mercuryspacecraft.com/
> --
> TriLUG mailing list        : http://www.trilug.org/mailman/listinfo/trilug
> TriLUG Organizational FAQ  : http://trilug.org/faq/
> TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
>


--

Cristobal M. Palmer
UNC-CH SILS Student
cristobalpalmer at gmail.com
cmpalmer at ils.unc.edu
ils.unc.edu/~cmpalmer
"Television-free since 2003"