replaced http://unix.stackexchange.com/ with https://unix.stackexchange.com/

Source Link

edited Apr 13, 2017 at 12:37

1

I use use /etc/ssh/wrapper.sh script, like in tutorial, that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

I use /etc/ssh/wrapper.sh script, like in tutorial, that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

I use /etc/ssh/wrapper.sh script, like in tutorial, that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

added 13 characters in body

Source Link

edited Apr 23, 2016 at 9:41

Jakuje

21.8k
7
56
74

I use /etc/ssh/wrapper.sh script, like in : https://binblog.info/2008/10/20/openssh-going-flexible-with-forced-commands/tutorial , that filters which commands are allowed to be run via sshssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some sshssh command line flags)

I use /etc/ssh/wrapper.sh script, like in : https://binblog.info/2008/10/20/openssh-going-flexible-with-forced-commands/ , that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

I use /etc/ssh/wrapper.sh script, like in tutorial, that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

Source Link

asked Apr 23, 2016 at 8:48

Grzegorz Wierzowiecki

14.8k
29
93
147

Can I use `internal-sftp` when using wrapper script with `ForceCommand` in sshd?

I use /etc/ssh/wrapper.sh script, like in : https://binblog.info/2008/10/20/openssh-going-flexible-with-forced-commands/ , that filters which commands are allowed to be run via ssh and logs them.

Currently when internal-sftp is required, I use /usr/lib/sftp-server.

Is there a way I could run internal-sftp of ssh binary, maybe even with chroot, instead of /usr/lib/sftp-server? (e.g. via some ssh command line flags)

ssh chroot sftp

Stack Exchange Network

Return to Question

Can I use `internal-sftp` when using wrapper script with `ForceCommand` in sshd?