<div dir="ltr"><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Aug 21, 2015 at 10:01 AM, DJ-Pfulio <span dir="ltr">&lt;<a href="mailto:djpfulio@jdpfu.com" target="_blank">djpfulio@jdpfu.com</a>&gt;</span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Just riffing here ... &quot;bind mount&quot; from ~T1000/dept-fun-times/ to their own area?</blockquote></div><br>I think that&#39;s going to work.</div><div class="gmail_extra"><br></div><div class="gmail_extra">1) Create `/home/t1000/dept-fun-times/`</div><div class="gmail_extra">2) Create `/opt/container/dept-fun-times/output` (and give t1000 group +rwx)</div><div class="gmail_extra">3) Bind `/opt/container/dept-fun-times` to `/home/t1000/dept-fun-times`</div><div class="gmail_extra">4) Set `Subsystem sftp internal-sftp` in sshd_config</div><div class="gmail_extra">5) Create match rule in sshd_config to chroot those users to `/opt/container/dept-fun-times`</div><div class="gmail_extra">6) Win<br><br clear="all"><div>Thank you for the (relatively) simple solution.</div><div><br></div>-- <br><div><div dir="ltr"><div><div dir="ltr"><div>James Sumners<br><a href="http://james.sumners.info/" target="_blank">http://james.sumners.info/</a> (technical profile)</div><div><a href="http://jrfom.com/" target="_blank">http://jrfom.com/</a> (personal site)</div><div><a href="http://haplo.bandcamp.com/" target="_blank">http://haplo.bandcamp.com/</a> (band page)</div></div></div></div></div>
</div></div>