Am 24.03.2014 12:57, schrieb Nicolas Mailhot: > Le Sam 22 mars 2014 01:20, Miloslav Trmač a écrit : > >> The RHEL documentation, apart from fully describing the abilities, >> specifically describes two uses: a ftpd banner > > Surprisingly, ftp is still widely used entreprise-side, because ssh is > giving too much access no, it is easy to restrict ssh to ONLY sftp and chroot and with simple bind-mounts you can completly replace ftp, doing that here in production over years with 3 simple scripts [root@localhost:~]$ mount | grep sftp-homes | wc -l 168 * create and maintain the mountpoints from the backend * mount all bind-mounts at boot * unmount them before shutdown * internally you can use the same for userbased smb shares that's why i go that angry by the broken coreutils "df" behavior which now luckily no longer lists all bind-mounts but is still a mess and nobody cares https://bugzilla.redhat.com/show_bug.cgi?id=1042840 https://bugzilla.redhat.com/show_bug.cgi?id=1001092#c12
Attachment:
signature.asc
Description: OpenPGP digital signature
-- devel mailing list devel@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/devel Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
