SoylentNews is people
SoylentNews is powered by your submissions, so send in your scoop. Only 18 submissions in the queue.
SoylentNews
The SFTP component in OpenSSH provides a chroot-feature for hardening. It is stated in the documentation that the chroot directory must not be writable by the user account, though specific files and subdirectories within it are allowed. Some people were questioning the read-only restriction. halfdog documents some analysis which is the result of discussions on openssh-dev mailing list. Here are some arguments about why these restrictions still makes sense in 2018.
This discussion has been archived.
No new comments can be posted.
OpenSSH SFTP Chroot Code Execution
|
Log In/Create an Account
| Top
| 8 comments
| Search Discussion
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Anyone can make an omelet with eggs. The trick is to make one with none.
(Score: 2, Offtopic) by realDonaldTrump on Wednesday January 10 2018, @04:41PM
A lot of our newspapers are turning into cyber sites. The failing Daily News was bought by a cyber site. But you look at those sites, they're mostly about our entertainment & sports celebrities, and the terrible wave of immigration & crime we're suffering through. And sometimes a little bit about cyber, the cyber that regular folks do. These EMAILS are about cyber for cyber people. You can tell because there's no picture. The stories for regular people have a picture of a keyboard, a picture of a Bitcoin, or a picture of the ones and zeros. This one doesn't. Very hard to read, but maybe someone wants to!