Hi,

I have my Raq3 with disabled telnet and ftp. So I installed SSH to let people upload files to their sites with programs such as WinSCP.

I am running OpenSSH Release 3.0.1p1-1.

But the fact is that anyone using a ssh client can view other sites contents.

Is there a way to prevent people accessing other sites than his own by SSH2, I mean, to navigate other's accounts?

They can't modify other's contents, but they can download anything.

Any help is welcome,
thank you.

Daniel

Another problem I have found by allowing Telnet or SSH is as you said they can browse other peoples sites, and while they cant edit or change anything, they can however read, which includes the ability to view usernames, passwords, etc.. Mouse

well, I don't remember where but I 've found a solution. It involves a script to be runned by cronjob that can lock ssh user to their home directory as you can do with ftp. I'm sorry don't forgetting where....maybe later I'll re-find for you.

Thank you very much, pal.

try to dig in your bookmarks :cartman:

Regards,
Daniel