RSSH to jail user for SSH and RSYNC

[shane01]

Hi All

We've setup a server which will receive RSYNC over SSH backups from a number of our users. We're working on securing the server. So far we've locked down incoming ports to just SSH and installed fail2ban to tighten things up a little more. Now we're trying to prevent the users (who need to be able to SSH to the server) from getting out of their home directory or making a mess of our server.

As far as I can tell, the best approach to this is RSSH.

I've downloaded RSSH:
wget http://dag.wieers.com/rpm/packages/rssh ... f.i386.rpm

Try to install it:

[root@rsync tmp]# rpm -ivh rssh-2.3.2-1.2.el5.rf.i386.rpm
warning: rssh-2.3.2-1.2.el5.rf.i386.rpm: Header V3 DSA/SHA1 Signature, key ID 6b8d79e6: NOKEY
error: Failed dependencies:
libc.so.6 is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.0) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.1) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.3) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.3.4) is needed by rssh-2.3.2-1.2.el5.rf.i386
libc.so.6(GLIBC_2.4) is needed by rssh-2.3.2-1.2.el5.rf.i386

Linux is still fairly new to me, and I don't seem to be able to find a solution to this one.

Can anyone provide me with some guidance?

[TrevorH]

Don't try to install packages for CentOS 5 on CentOS 7. I'd not use repoforge/rpmforge/whatever it's called these days anyway as there have been almost no updates to any of its packages for about 3 years so many have unfixed security problems.

I don't see rssh for el7 in any of my repos.

[aks]

This might help you: http://allanfeid.com/content/creating-c ... ssh-access