"tilopa" <wgilgallon@gmail.com> writes:

> I just installed and configured Cygwin SSH on a Windows2003 DC. We want
> to have external clients be able to sftp into this server and be able
> to upload and download files from a single particular directory. But
> when I test this functionality I can connect to the server and am
> dumped into the correct dirctory but I can then uplevel to the cygwin
> root directory and have access to everything there. I have searched
> quite a bit for a solution and have found nothing, except for
> references to chroot which apparently can only be configured on a pure
> unix machine. It is puzzleing to me that more businesses would not need
> this functionality, and what is the point of secure ftp if you cannot
> lock your users into there home directory. Does anyone know of a better
> free solution?

Well ... is this functionnality really important to you ?
Files have permissions, so you can limit the users rights. I suppose you
can just modify the read, write and execution right on the various place
where you don't want access (and maybe use a different group for remote
users).

The point of secure ftp is to do secure authenticated file transmission,
not to limit users ... the os handle users and the limits (and cygwin
can handle some kind of limitations, but I would not trust such thing).

And most businesses just setup a unix/linux box to do this kind of
things (that is for the category 'better free solution')

--
Thomas Samson
Computers are like air conditioners. Both stop working, if you open
windows.
-- Adam Heath