Normally you chroot on a per *process* level instead of per user. But, the PAM_chroot module does allow it to happen on a per user basis provided that the program calling PAM is running root at the time it does so. Since the SSH server package that comes with Red Hat 8.0 still does not support "Privilege Separation," it is still possible to use this PAM module with the default RH 8.0 sshd.
Documentation on PAM_chroot is available at /usr/share/doc/pam-0.75/txts/README.pam_chroot On Fri, 10 Jan 2003, Larry Brown wrote: > When chrooting a user does this also prevent the user from accessing other > areas of the server when they login via ssh? Also does anyone know if a > good howto on using chroot to "jail" a user? > > Larry S. Brown > Dimension Networks, Inc. > (727) 723-8388 > > > > > > -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe https://listman.redhat.com/mailman/listinfo/redhat-list
