0

Is there a way to do this without installing a package like rssh or scponly, as they seem woefully out of date and full of security problems? Is there any newer tool I could use? ssh is an optional requirement, just being able to scp would be good also.

Can't use sftp, or else openssh configuration would do.

Paul
  • 253
  • 3
  • 8
  • 2
    You can start a sshd daemon in a "chroot jail", as long as you don't use an already used port (TCP/22 as default). You need the binary, all related libraries and some additional parametters to start the daemon on a different port. – Roberto Paz Dec 06 '19 at 12:32
  • https://olivier.sessink.nl/jailkit/howtos_jailkit_pam_chroot.html – poige Dec 06 '19 at 12:55
  • Maybe this helps https://askubuntu.com/questions/134425/how-can-i-chroot-sftp-only-ssh-users-into-their-homes – Daniel W. Dec 06 '19 at 13:04
  • @poige That sounds interesting, so I could use the pam module instead of using jailkit at all? And if not, at least jailkit is being updated still! – Paul Dec 06 '19 at 15:49
  • dunno, not using it – poige Dec 06 '19 at 16:07
  • See https://serverfault.com/questions/852309/limit-ssh-key-to-scp-only – davidgo Dec 06 '19 at 18:53

0 Answers0