On 11/12/06, Massimo <[EMAIL PROTECTED]> wrote:
Hello,
I need to provide users with sftp and scp access to unix servers without
the possibility to open a shell on the server.
It would also be useful to give user:
1) restricted shell
2) Chroot sftp/scp access
I need to do this kind of condiguration on HP-UX, Solaris, Linux & AIX.
How can I do? Can I do it with "standard & supported" software or do I
need external software?
Do you have any ideas?
I don't believe OpenSSH can accomplish what your looking for out of
box. That said, there are a couple "plugins" or external software out
there that can accomplish what you are looking for. Specifically I
know of RSSH and SCPONLY
RSSH
http://www.pizzashack.org/rssh/
Verified to work on:
* A wide variety of Linux distributions, on IA32 and IA64 hardware
* Compaq Tru64 Unix
* Solaris 2.x - 8 (under certain conditions -- see the security link)
* AIX 5.1
* HP/UX 11.00 (PA-RISC)
* HP/UX 11.22 (IA64)
* Irix 6.5
chroot capable
SCPONLY
http://sublimation.org/scponly/wiki/index.php/Main_Page
-Would assume it works on most Unix/Linux platforms when built from source
-chroot capable
Hope this helps.
--Rob
