chroot help

Support for security such as Firewalls and securing linux
Post Reply
kgalbraith
Posts: 5
Joined: 2009/10/16 02:09:33

chroot help

Post by kgalbraith » 2011/09/07 15:59:29

Hello everyone. I am hosting an SFTP server for about 40 clients. Each user has it's home directory set to a specific folder on a mounted drive, and each user logs into that folder. My problem is locking them into that folder. I am told chroot will solve this issue, but I am not sure how to go about setting this up. Every walkthrough discusses making new home directories on the /usr slice, and I don't want to do this.

SaskoFord
Posts: 8
Joined: 2010/10/15 08:34:45

Re: chroot help

Post by SaskoFord » 2011/09/09 08:48:48

Hello,

I have had the same problem years ago and did not find an efficient solution for it, so I switched to FTP over SSL and disabled sftp. You can configure it with vsftpd (included in cents 6) which supports chroot and force use of ssl for clients (login and/or data). There are many clients that support ftp over ssl, for example filezilla - runs on win/mac/linux.

hope this helps ...

S.

pschaff
Retired Moderator
Posts: 18276
Joined: 2006/12/13 20:15:34
Location: Tidewater, Virginia, North America
Contact:

chroot help

Post by pschaff » 2011/09/19 20:59:08

A google on [url=http://www.google.com/search?q=ssh+sftp+chroot+%22red+hat+enterprise+linux+6%22+OR+rhel6+OR+centos-6&ie=utf-8&oe=utf-8&aq=t&rls=org.mozilla:en-US:official&client=firefox-a&safe=active]ssh sftp chroot "red hat enterprise linux 6" OR rhel6 OR centos-6[/url] looks hopeful. The [url=http://www.thisisnotsupported.com/sftp-chrootjail-on-centos6/]second hit[/url] seems pretty close to the target.

r_hartman
Posts: 706
Joined: 2009/03/23 15:08:11
Location: Netherlands
Contact:

Re: chroot help

Post by r_hartman » 2011/09/20 07:09:01

[url=http://www.pizzashack.org/rssh/]rssh[/url] will do the job nicely. It's in rpmforge:
[code]Available Packages
rssh.x86_64 2.3.3-2.el6.rf rpmforge[/code]

Post Reply

Return to “CentOS 6 - Security Support”