Project

General

Profile

Actions

New Content #15200

closed

usermanager privileges have ZERO documentation on the "User - System: Copy files to home directory (chrooted scp)" privileges setting/setup

Added by Ronald Antony 11 months ago. Updated 11 months ago.

Status:
Rejected
Priority:
Normal
Assignee:
-
Category:
User Management / Authentication
Target version:
-
Start date:
Due date:
% Done:

0%

Estimated time:

Description

The manual section which should have this documented, is glaringly empty:

https://docs.netgate.com/pfsense/en/latest/usermanager/privileges.html#usermanager-privileges

So it's not clear how one can set up such a user that has a functioning scp/sftp only account.
While this would be useful for various convenience operations, like e.g. automatic config backups, it would also allow certificate creation/renewal to be reasonably safely use FTP Webroot for the challenge mechanism.

Without documentation: no go!

Actions #1

Updated by Jim Pingle 11 months ago

  • Status changed from New to Rejected
  • Priority changed from High to Normal

That's a deliberate choice. The firewall is not meant to be a general-purpose file server with access handed out freely. Anyone who wants to take that step needs to have a deeper understanding of how it works and the implications, so it's left for users to figure out on their own.

Actions

Also available in: Atom PDF