Re: sFTP accounts, but not shell.
From: Nico Kadel-Garcia (nkadel@bellatlantic.net)Date: 02/28/02
- Previous message: Neil W Rickert: "Re: can passwordless SSH work without DNS ?"
- In reply to: Sylvain Pajot: "sFTP accounts, but not shell."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: "Nico Kadel-Garcia" <nkadel@bellatlantic.net> Date: Thu, 28 Feb 2002 00:13:39 GMT
"Sylvain Pajot" <sylvain.pajot@isty-info.uvsq.fr> wrote in message
news:56cd0e5f.0202271357.69d6ad5a@posting.google.com...
> Hi there,
>
> One simple simple question : is there any way to set up sFTP accounts
> without granting users with shell access ?
> Of course, I don't except an answer that simple (how to do it) ;)
>
> Regards,
>
> Sylvain
Build a chroot cage (with my notes at http://www.cag.lcs.mit.edu/~raoul/.
for OpenSSH). Put appropriate binaries in the cage, and install a restricted
shell to go with it. Most restricted shells aren't *that* restricted, so you
reall want to trap them in a chroot cage as well.
Assign the user an appropriate home directory and the restricted shell.
Voila! Done!
- Next message: Jason Sigurdur: "sshd "DId not receive identification string from""
- Previous message: Neil W Rickert: "Re: can passwordless SSH work without DNS ?"
- In reply to: Sylvain Pajot: "sFTP accounts, but not shell."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
