chroot-ing a User?
I've been trolling the web for a couple days to find out how to 'chroot' a user to a particular directory on my machine, but haven't found anything that's very helpful. Was hoping someone here might be able to point me in the right direction. The information I have been able to find all seems to be dated and either doesn't work or I'm missing something fundamental when I try to implement it.
I'm working on a project with several other people and it would be helpful if I could allow them to connect to my machine via SSH or SFTP to drop files into a specific directory and to pick up things that other folks in the group have dropped there previously.
I've created a user account for all of us to share and used NetInfo Manager to switch the account's home directory to a separate volume away from my personal data. Since some of the other folks in the group are not necessarily technical when it comes to computers, I'm going to recommend that they use FileZilla to connect and transfer files because it will run on Mac, Linux and Windows platforms. I've tested the mechanics of this and it works just fine, except for one tiny thing...
The problem is that, from FileZilla (or any other SSH or SFTP connection), I can connect to my machine using the group account and walk almost anywhere on the system and look at the files. While the folks I'm working with are generally trustworthy, I don't necessarily want to rely on their honor to stay out of the spreadsheets containing my financial records, my personal e-mail, etc. Even trustworthy people can fall victim to their own curiosity.
I've found a few articles on how to use chroot, OpenSSH, and OpenSSL to jail a user account to a particular directory, but they all seem to be dated. All of them say that Apple's version of OpenSSH will not support chroot. (Is this still true?) I've only located one article that deals with a version of OS X as recent as 10.4.3, and it uses something called 'scponly'. I can't even get it to compile because of some library mis-matches.
My questions:
1. Has anyone on the list set up something similar on OS X 10.4.11? If so, will you share how?
2. Is the problem with OS X 10.4? Do I need to upgrade to 10.5.x before this will work?
3. Is this functionality that is only enabled on OS X Server? (i.e., has it been deliberately disabled?)
4. Is there another way to accomplish this without necessarily relying on chroot?
Thanks in advance for any replies.
Tom
I'm working on a project with several other people and it would be helpful if I could allow them to connect to my machine via SSH or SFTP to drop files into a specific directory and to pick up things that other folks in the group have dropped there previously.
I've created a user account for all of us to share and used NetInfo Manager to switch the account's home directory to a separate volume away from my personal data. Since some of the other folks in the group are not necessarily technical when it comes to computers, I'm going to recommend that they use FileZilla to connect and transfer files because it will run on Mac, Linux and Windows platforms. I've tested the mechanics of this and it works just fine, except for one tiny thing...
The problem is that, from FileZilla (or any other SSH or SFTP connection), I can connect to my machine using the group account and walk almost anywhere on the system and look at the files. While the folks I'm working with are generally trustworthy, I don't necessarily want to rely on their honor to stay out of the spreadsheets containing my financial records, my personal e-mail, etc. Even trustworthy people can fall victim to their own curiosity.
I've found a few articles on how to use chroot, OpenSSH, and OpenSSL to jail a user account to a particular directory, but they all seem to be dated. All of them say that Apple's version of OpenSSH will not support chroot. (Is this still true?) I've only located one article that deals with a version of OS X as recent as 10.4.3, and it uses something called 'scponly'. I can't even get it to compile because of some library mis-matches.
My questions:
1. Has anyone on the list set up something similar on OS X 10.4.11? If so, will you share how?
2. Is the problem with OS X 10.4? Do I need to upgrade to 10.5.x before this will work?
3. Is this functionality that is only enabled on OS X Server? (i.e., has it been deliberately disabled?)
4. Is there another way to accomplish this without necessarily relying on chroot?
Thanks in advance for any replies.
Tom
PowerMac Dual G4 Tower, Mac OS X (10.4.11)
