Bug 1352 (chroot)

Summary: Chroot support for sshd
Product: Portable OpenSSH Reporter: Damien Miller <djm>
Component: sshdAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED FIXED    
Severity: enhancement Keywords: patch
Priority: P2    
Version: -current   
Hardware: All   
OS: All   
Bug Depends on:    
Bug Blocks: 1353    
Attachments:
Description Flags
ChrootDirectory for core OpenSSH
none
ChrootDirectory for portable OpenSSH none

Description Damien Miller 2007-08-10 13:30:57 AEST 
Created attachment 1336 [details]
ChrootDirectory for core OpenSSH

This patch adds a ChrootDirectory option to optionally specify a directory to chroot(2) to after authentication in sshd.
Comment 1 Damien Miller 2007-08-10 13:31:45 AEST 
Created attachment 1337 [details]
ChrootDirectory for portable OpenSSH
Comment 2 Damien Miller 2007-08-10 13:36:17 AEST 
BTW this patch is intended for use with the recent "Match" sshd_config directive. For example:

Match group chroot_users
        ChrootDirectory /home/chroot/%u
Comment 3 Damien Miller 2008-02-10 22:50:58 AEDT 
A newer version of this patch has just been committed, with additional support for an in-process sftp-server to avoid the need to configure the chroot with support files. This will be in openssh-4.8.
Comment 4 Damien Miller 2008-03-31 15:20:58 AEDT 
Fix shipped in 4.9/4.9p1 release.