[suse-security] Re: SSH and CHROOT alternatives...

[Sven Koch <haegar@xxxxxxxxx>]

On Thu, 22 May 2003 jonathanneto@xxxxxxxxxxx wrote:

> To access the home you could use a workaround
> mounting the homes with nfs and using iptables to allow only localhost to
> use nfs at all.

Instead of "loopback-nfs" there is now the better way of bind-mounts since
kernel 2.4.

	mount --bind /home /chroot/home

This comes handy for anonymous-ftp-chroot's too:

	mount --bind /bigspacewithfiles1 /usr/local/ftp/pub/1
	mount --bind /bigspacewithfiles2 /usr/local/ftp/pub/2

c'ya
sven

-- 

The Internet treats censorship as a routing problem, and routes around it.
(John Gilmore on http://www.cygnus.com/~gnu/)

-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here