The SFTP component in OpenSSH provides a chroot-feature for hardening. It is stated in the documentation that the chroot directory must not be writable by the user account, though specific files and subdirectories within it are allowed. Some people were questioning the read-only restriction. halfdog documents some analysis which is the result of discussions on openssh-dev mailing list. Here are some arguments about why these restrictions still makes sense in 2018.
(Score: 2) by pkrasimirov on Wednesday January 10 2018, @03:42PM (1 child)
Yes, as long as there are valid arguments.
(Score: 4, Insightful) by JoeMerchant on Wednesday January 10 2018, @03:54PM
I'd rather catch a good story off of mailing list once in awhile instead of endless parroting of the Reuters feed.
🌻🌻 [google.com]