HP-UX Secure Shell A.04.30.006 and A.04.30.007 Release Notes

HP-UX Secure Shell A.04.30.006 and A.04.30.007

HP-UX Secure Shell and chroot environments

Chapter 25

HP-UX Secure Shell and chroot environments

HP-UX Secure Shell Versions A.04.30.006 and A.04.30.007 supports

chroot functionality for the ssh, sftp, and scp commands. The chroot

functionality is mainly used as an added security measure.

When you enable chroot, you can start an application in a specified

directory and enable all its users access to that directory and the

directories below it. It prevents users from using the cd command to

access directories at a higher level. Use this functionality to enable

restricted file and directory access to users of a particular application.

This is not an end-user feature. The system administrator must enable

the chroot functionality for an application. All users of that application

will automatically be subject to the restrictions imposed by chroot.

Refer to the README file at /opt/ssh/README.hp for more information on

setting up the chroot functionality. From HP-UX Secure Shell Versions

A.04.30.004 and A.04.30.005 onwards, the chroot setup script is

available at /opt/ssh/utils/ssh_chroot_setup.sh.