RE: SFTP without SSH session access
From: Shapiro, David (david.shapiro_at_bti.com)
To: 'Les Bell' <firstname.lastname@example.org>, Andrey Kozhukhovskiy <email@example.com> Date: Thu, 5 Jun 2003 08:05:42 -0400
Check out rssh. It works with openssh. It does exactly what you want.
From: Les Bell [mailto:firstname.lastname@example.org]
Sent: Wednesday, June 04, 2003 10:36 PM
To: Andrey Kozhukhovskiy
Cc: SSH mail list
Subject: Re: SFTP without SSH session access
"Andrey Kozhukhovskiy" <email@example.com> wrote:
The question is, if it is possible to allow users to transfer files over
SFTP, while restricting SSH sessions from outside?
I haven't tried this myself, but the obvious idea that comes to mind would
be setting the users' default shell to /bin/false or /sbin/nologin. That's
the traditional way of limiting users to FTP access with command shell, and
I can't see why it wouldn't work for ssh/sftp as well.
--- Les Bell, RHCE, CISSP