Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

10.4: Create a chrooted SSH/SFTP server UNIX
Tiger only hintThe directions from this previous hint weren't cutting it anymore for setting up a chrooted SFTP environment in Tiger, as the networking code changed significantly from Panther.

With these updated directions, you can use ssh and secure FTP (sftp) with chroot to enable a 10.4 machine with truly secure file transfer. These instructions result in a connection that both encrypts the session and has it set so that sftp users won't have free run of the whole file system -- they will be jailed in a location you specify. I've tested this on a couple machines running OS X 10.4.2, and it appears to work without breaking anything; I've also patched one of the machines to 10.4.3, and all seems fine so far.

You will need to have the Developer Tools (Xcode) installed on your system for this to work. These directions work on Tiger client; I have no resources to test them on Tiger Server.
    •    
  • Currently 1.20 / 5
  You rated: 2 / 5 (5 votes cast)
 
[17,946 views]  

10.4: Create a chrooted SSH/SFTP server | 4 comments | Create New Account
Click here to return to the '10.4: Create a chrooted SSH/SFTP server' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.4: Create a chrooted SSH/SFTP server
Authored by: SonyaLynn on Nov 03, '05 07:50:58PM

Well done, Brad! I hadn't had time to figure out how to do this again now that my company's on Tiger (and Tiger Server...what can I say? we NEEDED ACLs badly...but I expect that your instructions should work on that as well, what with being the same code-base and all).

Nice to see continued interest in SFTP as a cross-platform alternative to FTP on OS X. :-)



[ Reply to This | # ]
10.4: Create a chrooted SSH/SFTP server
Authored by: btlupin on Nov 06, '05 02:21:23AM

Is it possible to limit the number of concurrent sessions for a user when using ssh/sftp? I looked in the sshd_config, but didn't see anything. Using Transmit I could log on over 15 times.



[ Reply to This | # ]
10.4: Create a chrooted SSH/SFTP server
Authored by: Schwie on Nov 16, '05 08:57:43AM

I haven't had a problem with this and unfortunately I don't know of a way to limit the number of concurrent sessions. If you find out how to do this, please post back and I'll add the instructions to my website.

Brad



[ Reply to This | # ]
10.4: Create a chrooted SSH/SFTP server
Authored by: drgabb0 on Mar 22, '08 07:17:09PM

Real hip hint, but has anybody successfully done this in Leopard? I must've spent half a day trying to so far, but no dice :(...



[ Reply to This | # ]