Linux - Server This forum is for the discussion of Linux Software used in a server related context. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
10-31-2006, 01:09 PM
|
#1
|
Member
Registered: Jan 2004
Distribution: Slackware, RH, WBEL
Posts: 65
Rep:
|
chrooted SFTP + FTP server
haven't found anything on the unification of these two protocols...
we'd like to build an ftp/sftp appliance, allowing both protocols if needed. one user can have the possibility ofg logging in via ftp, or sftp, and be chrooted in the same directory. I know this is technically possible, but would be an administrative nightmare if managed seperately.
so...has anyone heard of or implemented an integrated ftp/sftp system like what I am describing?
much thanks.
|
|
|
11-02-2006, 09:25 AM
|
#2
|
Member
Registered: Jan 2004
Distribution: Slackware, RH, WBEL
Posts: 65
Original Poster
Rep:
|
I forgot to note that we would preferably like to use sldap/ldap to authenticate users, which means that it should ideally be possible even to setup ftp/sftp systems seperately.... but with the same chrooted environments.....hmmm
|
|
|
12-07-2006, 03:48 PM
|
#3
|
LQ Newbie
Registered: Sep 2006
Distribution: Slackware 10.2, Slackware 11, Slackware 12.2, Slamd64 12.2, Slackware 13
Posts: 19
Rep:
|
I have not heard of this, but i am also trying to do the same.. The problem as i have seen it is that i can't have something like RSSH as a virtual shell for the users and still have them be able to login using FTP with the same name, because of the restrictions set forth by RSSH allowing only certian connections.
If there is a way to copy over or dynamically link FTP services to users while using a different shell or copying over the libs as you would do with a normal chroot enviroment, but every option that i have tried has not come up with anything useful results.. if anyone has any ideas please advise
|
|
|
12-07-2006, 10:44 PM
|
#4
|
Member
Registered: Jan 2004
Distribution: Slackware, RH, WBEL
Posts: 65
Original Poster
Rep:
|
sadly, the need for this was erased due to a file transfer appliance utilizing https being purchased.
my end conclusion was to setup chrooted ftp and ssh/scp services separately. however, both would use ldap and refer to the same directory regardless of services used to connect. this way, it would *appear* to the end user to be the same (since the chroot location would be the same either way). this would minimize management by utilizing ldap, so it's not as if user account would have to be created twice (once for ftp, once for ssh). you could us the local passwd file as well of course as an authentication source for both.
for example, if the user JohnFoo authenticated:
$LDAP_user=JohnFoo
ftp would chroot to: /home/jail/home/$LDAP_user/
and
ssh would chroot to: /home/jail/home/$LDAP_user/
problem solved!....conceptually
Last edited by TotalDefiance; 12-07-2006 at 10:47 PM.
|
|
1 members found this post helpful.
|
12-08-2006, 09:37 AM
|
#5
|
LQ Newbie
Registered: Sep 2006
Distribution: Slackware 10.2, Slackware 11, Slackware 12.2, Slamd64 12.2, Slackware 13
Posts: 19
Rep:
|
Thanks ill try it that way then .. ill just have to read a bit more on LDAP, since i only know a little about it
|
|
|
All times are GMT -5. The time now is 06:55 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|