On Thu, Aug 28, 2008 at 5:27 PM, James D. Parra <Jamesp@musicreports.com> wrote:

Outside clients want the security of sftp and I would want them locked into their home directory without the ability of 'cd'ing up the dir tree and into other client's home directories.

Why would they have that ability to cd into other people's directories? If the machine is set up correctly they can't see other people's directories. You seem to be lobbying for a daemon to do the administrator's job of properly setting directory permissions. If the machine is set up in-securely adding another Kludge on top of that is just wrong. Use the tools at hand before you ask for new ones. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Chrooting is the proper tool to achieve the goal of locking ftp users into their dir's. Since they also don't have a shell, that is yet another approach to security. Integrating ssh into file transfer, as I've mentioned, ensures that the data is secure during the file transfer. That's the beauty of Linux, many different ways of achieving a common goal. Finding an out-of-the-box solution and putting it into service is hardly kludging. ~James -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org