17 Mar
2005
17 Mar
'05
01:12
Hi Everyone, I have a situation where I have users that need to connect to my server via ssh. When they connect there presented with a menu that they can't break out of to obtain shell access. However, I've noticed that there is nothing stopping a savy user from doing something like this: cat somefile |ssh hostname "cat - > /somedir/file-with-weak-perms" Aside from chrooting ssh, does anyone know of a clever way to avoid this scenario? TIA, Dave