From owner-FreeBSD-users-jp@jp.FreeBSD.org Fri May 20 13:57:37 2011
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) id p4K4vbx03402;
	Fri, 20 May 2011 13:57:37 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from mo.securemx.jp (mo300.securemx.jp [210.130.202.40])
	by castle.jp.FreeBSD.org (8.11.6p2+3.4W/8.11.3) with ESMTP/inet id p4K4vaY03397
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Fri, 20 May 2011 13:57:36 +0900 (JST)
	(envelope-from moto@kawasaki3.org)
Received: by mo.securemx.jp (mo300) id p4K4va3M027710; Fri, 20 May 2011 13:57:36 +0900
X-MXL-Hash: 4dd5f4bf44ce920b-497a3b547b241129775de18dddcc688118780539
Received: from mail02.idc.lac.co.jp (ip-61-14-184-226.a-mode.jp [61.14.184.226] (may be forged))
	by relay.securemx.jp (mx-mr300) id p4K4vZ5T019256;
	Fri, 20 May 2011 13:57:35 +0900
Received: from localhost ([172.28.80.14]) by mail02.idc.lac.co.jp
          (Post.Office MTA v3.9.2.3 release 20060323
           ID# 5014-021U800L800S0V41J) with ESMTP id jp
          for <FreeBSD-users-jp@jp.FreeBSD.org>;
          Fri, 20 May 2011 13:57:35 +0900
Message-Id: <20110520.135829.74734427.moto@kawasaki3.org>
To: FreeBSD-users-jp@jp.FreeBSD.org
From: moto kawasaki <moto@kawasaki3.org>
In-Reply-To: <86wrhm6xgr.fsf@jimmy.4407.kankyo-u.ac.jp>
References: <20110519.161348.00796424.moto@kawasaki3.org>
	<86wrhm6xgr.fsf@jimmy.4407.kankyo-u.ac.jp>
X-Face: )._4~w!_D$r6qNS0+;nS|]WNeI4f3o)QnH[ItB[esXuc$~hQ$.,?}$SnLe/[24Hao%^q/Is
 'SJtZe#21h;7z;q+iyj[^%7\46.Gg-t7.px<}L-f_:P+6i4-a{DIL[
X-Mailer: Mew version 6.3 on Emacs 22.3 / Mule 5.0 (SAKAKI)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Fri, 20 May 2011 13:58:29 +0900
X-Sequence: FreeBSD-users-jp 93435
Subject: [FreeBSD-users-jp 93435] Re: Q: /dev/tty ownership with
 OpenSSH ChrootDirectory
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: moto@kawasaki3.org
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+060209


$B@n:j$G$9!#(B
$B$"$j$,$H$&$4$6$$$^$9!#$&$^$/$$$-$^$7$?!#(Bm(_._)k

$B65$($F$$$?$@$$$?%"%I%P%$%9%a%$%k$K$O(B
  1) ssh $B$K(B -t $B%*%W%7%g%s$rIU$1$k(B
  2) $BF'$_Bf$G(B /usr/bin/script -qt0 /dev/null $B$7$F$+$i(B ssh $B$9$k(B
  3) /dev/tty $B$N(B owner/permissions $B$rJQ99$9$k$J$i(B devfs $B$G4hD%$k(B
$B$H$$$&%"%$%G%"$,=P$F$$$^$7$?$,!"(B2) $B$N(B script $B$GF'$_Bf$+$i(B ssh $B$GJL$N%5!<(B
$B%P$X%m%0%$%s$G$-$^$7$?!#(B

$B$D$$$G$J$,$i!"(B-t $B%*%W%7%g%s$O!"F'$_Bf$X$N(B ssh $B$HF'$_Bf$+$i$N(B ssh $B$NN>(B
$BJ}$KF1;~$KIU$1$F$_$^$7$?$,!"8=>]JQ$o$i$:%(%i!<$,=P$^$9!#(B
devfs $B$K$D$$$F$O!"F'$_Bf$N(B /etc/devfs.conf $B$K(B
  own	/usr/home/user1/dev/tty	user1:tty
  perm	/usr/home/user1/dev/tty	0666
$B$H=q$/$H3N$+$K$3$N@_DjDL$j$K$J$k$N$G$9$,!"(Buser1 $B$H$7$F%m%0%$%s$9$k$H(B
root:tty 0620 $B$N$^$^$H$$$&IT;W5D$J$3$H$K$J$j$^$9!#(B(ChrootDirectory $B2<(B
$B$+H]$+$G8+$(J}$,JQ$o$k(B)

>> [$BCN$j$?$$$3$H(B]
>> ChrootDirectory $B$NFbB&$N(B user1 $B$+$i8+$F!"(B/dev/tty $B$NFI$_=q$-$,$G$-$k$h(B
>> $B$&$K$9$k$?$a$K$O!"$I$&$9$l$PNI$$$G$7$g$&$+!)(B
>> $B$"$k$$$O!"$3$&$$$&!VF'$_Bf!W$r:n$kJL$NJ}K!$,$"$l$P65$($F$/$@$5$$!#(B
> 
> http://lists.freebsd.org/pipermail/freebsd-questions/2011-January/226519.html
> 
> $B$K!"F1$8$h$&$K:$$C$F$$$k?M$,$$$F!"(B
> 
> http://lists.freebsd.org/pipermail/freebsd-questions/2011-January/226570.html
> 
> $B$H$$$&%"%I%t%!%$%9$,=P$F$$$^$9!#(B
> 
>   You should define a 'mode' rule in some of your /etc/devfs.* configs,
>   depending on your particular need.
> 
> $B$G$9$C$F!#(B

$B$*$+$2$5$^$G=u$+$j$^$7$?!#$I$&$b$"$j$,$H$&$4$6$$$^$9!#(B

-- 
moto kawasaki <moto@kawasaki3.org>
