|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Josh Hoblitt (Josh.Hoblitt
bbox.net)Date: Mon Mar 05 2001 - 13:18:40 CST
exit in .profile is a BAD idea but if your going to play those games that
you run them inside of a trap so someone can't ctl-z/ctl-c/etc out of any
commands you want to execute.
-----Original Message-----
From: Crist J. Clark
To: Peter Hessler
Cc: miscopenbsd.org
Sent: 3/2/01 11:44 PM
Subject: Re: safest ftp server?
On Fri, Mar 02, 2001 at 07:37:44PM -0800, Peter Hessler wrote:
> On the same point as secure, how would you chroot the scp connection?
> I know I can chroot the normal ftp server by adding the user name to
> the /etc/ftpchroot file, but apparently scp doesn't allow that. I
have
> the ssh "telnet" blocked by adding exit to the end of the .profile,
and
> chmod to no write access and chown to root.wheel .
Erm... You just put 'exit' at the end of '.profile'? Have you actually
tested to see if that does anything to stop logins?
$ ssh scp-host "/bin/csh -i"
-- Crist J. Clark cjclark
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]