1593 – Configuration ChrootDirectory=%h is unuseful (users cannot access their homes)

Bug 1593 - Configuration ChrootDirectory=%h is unuseful (users cannot access their homes)

Summary: Configuration ChrootDirectory=%h is unuseful (users cannot access their homes)

Status:	CLOSED WONTFIX

Alias:	None

Product:	Portable OpenSSH
Classification:	Unclassified
Component:	sftp-server (show other bugs)
Version:	5.2p1
Hardware:	All All

Importance:	P2 normal
Assignee:	Assigned to nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2009-04-28 19:48 AEST by jchadima
Modified:	2009-10-06 15:01 AEDT (History)
CC List:	2 users (show)

See Also:

Attachments
Enable users to to acces their homes in case of ChrootDirectory=%h (970 bytes, patch) 2009-04-28 19:48 AEST, jchadima	no flags	Details \| Diff
last version of the patch 08/28/09 (5.75 KB, patch) 2009-08-28 15:25 AEST, jchadima	no flags	Details \| Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description jchadima 2009-04-28 19:48:19 AEST

Created attachment 1629 [details]
Enable users to to acces their homes in case of ChrootDirectory=%h

In case of ChrootDirectory=%h all users except root cannot acces their homes, because chroot jail checks if whole path (all components) are root owned with sctrict permissions. The patch attaced solves this problem.

Comment 1 Damien Miller 2009-04-30 14:10:32 AEST

No, we require the entire path to be root-owned for good reasons. This has been discussed extensively on the mailing list.

Comment 2 jchadima 2009-08-28 15:25:25 AEST

Created attachment 1678 [details]
last version of the patch 08/28/09

Comment 3 Damien Miller 2009-10-06 15:01:52 AEDT

Mass move of RESOLVED bugs to CLOSED now that 5.3 is out.