New Content #15200: usermanager privileges have ZERO documentation on the "User - System: Copy files to home directory (chrooted scp)" privileges setting/setup - pfSense Docs - pfSense bugtracker

Actions

Copy link

New Content #15200

closed

usermanager privileges have ZERO documentation on the "User - System: Copy files to home directory (chrooted scp)" privileges setting/setup

Added by Ronald Antony 3 months ago. Updated 3 months ago.

Status:

Rejected

Priority:

Normal

Assignee:

Category:

User Management / Authentication

Target version:

Start date:

Due date:

% Done:

Estimated time:

Description

The manual section which should have this documented, is glaringly empty:

https://docs.netgate.com/pfsense/en/latest/usermanager/privileges.html#usermanager-privileges

So it's not clear how one can set up such a user that has a functioning scp/sftp only account.
While this would be useful for various convenience operations, like e.g. automatic config backups, it would also allow certificate creation/renewal to be reasonably safely use FTP Webroot for the challenge mechanism.

Without documentation: no go!

Actions

Copy link

Updated by Jim Pingle 3 months ago

Status changed from New to Rejected
Priority changed from High to Normal

That's a deliberate choice. The firewall is not meant to be a general-purpose file server with access handed out freely. Anyone who wants to take that step needs to have a deeper understanding of how it works and the implications, so it's left for users to figure out on their own.

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense » pfSense Docs