topic Re: sftp with /bin/false shell in Operating System - Linux

sftp with /bin/false shell

Pawan_1 — Fri, 27 Jul 2007 14:41:45 GMT

We are trying to restrict the user for the sftp account and it does not work with shell being set to /bin/false in password file. This works fine with ftp or vsftp. Hence is there any other shell meant to be used with sftp ?

Re: sftp with /bin/false shell

Ivan Ferreira — Fri, 27 Jul 2007 15:29:27 GMT

Please see:

http://sublimation.org/scponly/wiki/index.php/Main_Page

And also try:

http://www.debian-administration.org/articles/94

Re: sftp with /bin/false shell

skt_skt — Fri, 27 Jul 2007 20:36:16 GMT

second option is great and that is what you need exactly..

Regarding first option,--"scponly is an alternative 'shell' (of sorts) for system administrators who would like to provide access to remote users to both read and write local files without providing any remote execution priviledges"...i am not sure what is the advantage by NOT giving execute but write(delete/modify) access.

Re: sftp with /bin/false shell

ralfbosz — Mon, 30 Jul 2007 06:47:41 GMT

We are using rssh (http://www.pizzashack.org/rssh/).

This also has the option to chroot the user to a given directory (you have to create the chroot enviroment yourself).

Re: sftp with /bin/false shell

Pawan_1 — Mon, 30 Jul 2007 10:30:13 GMT

Thanks the First Option worked fine.

Re: sftp with /bin/false shell

Pawan_1 — Mon, 30 Jul 2007 10:30:57 GMT

Working.......

Re: sftp with /bin/false shell

skt_skt — Mon, 30 Jul 2007 15:10:44 GMT

u did not asign point to Ivan..