Re: [Jailkit-users] Error parsing jk

jailkit-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Jailkit-users] Error parsing jk_lsh.ini

From:	Olivier Sessink
Subject:	Re: [Jailkit-users] Error parsing jk_lsh.ini
Date:	Mon, 16 Nov 2009 08:22:03 +0100
User-agent:	Thunderbird 2.0.0.23 (X11/20090817)

Art Swri wrote:
> Thanks for the quick replies.
> 
> I want to limit the user to doing only rsync so that I can very tightly
> control what the user can do. (Mainly I want to disallow any uploads and
> allow downloads from only one dir.)
> 
> I was indeed using the wrong jk_lsh.ini file - my bad, I did not read
> the example carefully. After editing the correct ini file (and following
> the man page example for the ini file) I am pleased to report that it works.
> 
> I have been advised that setting up a jail is too error prone and we
> should just use permitopen and no-pty options in ~/.ssh/authorized_keys.
> Anybody have opinions (or better, experience) regarding the tradeoffs?

manually setting up a jail is indeed very error prone, that was the very
reason why we started jailkit development - it includes checks for all
obvious errors, and it automates things such that errors are hard to make.

Olivier

[Prev in Thread]

Current Thread

[Next in Thread]

[Jailkit-users] Error parsing jk_lsh.ini, Art Swri, 2009/11/14
- RE: [Jailkit-users] Error parsing jk_lsh.ini, Jon Gullidge, 2009/11/15
- Re: [Jailkit-users] Error parsing jk_lsh.ini, Olivier Sessink, 2009/11/15
- [Jailkit-users] Error parsing jk_lsh.ini, Art Swri, 2009/11/15
  - Re: [Jailkit-users] Error parsing jk_lsh.ini, Olivier Sessink <=

Prev by Date: [Jailkit-users] Solaris 10 x86_64 /etc/jailkit/jk_init.ini file
Next by Date: Re: [Jailkit-users] Solaris 10 x86_64 /etc/jailkit/jk_init.ini file
Previous by thread: [Jailkit-users] Error parsing jk_lsh.ini
Next by thread: [Jailkit-users] Solaris 10 x86_64 /etc/jailkit/jk_init.ini file
Index(es):
- Date
- Thread