do this: 1- modify the /etc/passwd and change "cpshell" to "bash", 2- create a file /etc/scpusers and add "admin and "root" in there in separate lines, 3- modify the /etc/ssh/sshd_config and replace the following lines: DenyUsers root shutdown halt nobody ntp pcap rpm AllowGroups root with: DenyUsers shutdown halt nobody ntp pcap rpm AllowGroups root admin 4- restart sshd with "service sshd restart", Now you can use scp with "admin" and "root" account Easy right?
--- On Thu, 7/24/08, pkc_mls <[EMAIL PROTECTED]> wrote: From: pkc_mls <[EMAIL PROTECTED]> Subject: Re: [FW-1] SCP service on SPLAT To: [email protected] Date: Thursday, July 24, 2008, 5:16 AM Stephen JT Bourike a écrit : > It's not the password file that needs alteration. > you indeed need to modify the passwd file, as by default the /etc/cpshell that is used to connect doesn't allow you to use scp. but you also have to configure the ssh daemon to accept scp for your user(s). Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
