Use the same trick as for ftp servers that require a valid shell.
Enter a bogus shell (ie /bin/false) into /etc/shells. Sftp will
(assuming it works like regular ftp) believe the shell exists and let
people log on, but since their is no actual shell can /bin/false, it
will fail to allow real logins.
Todd M. Wilkinson wrote:
>
>
> Well so far at least a shell i.e. /bin/sh or /bin/csh is
> needed to call of sftp-server
> so that scp2 will work. So changing the shell to /bin/false
> will only prevent any
> access from working including scp2. I would like to see an
> answer to this.
>
>
> NOTE: I speak of the Commercial version from SSH v2.4
>
> -Todd Wilkinson
> [EMAIL PROTECTED]
>
>
>
>
>
> At 08:06 PM 2/16/01 +0100, Fred Mobach wrote:
>
>> Gerardo Hugo Fisanotti wrote:
>> >
>> > I need to allow some users to scp files out from one of my
>> servers, but
>> > I woudln't like
>> > to let them login to my server, my question is:
>> >
>> > Is there any way to let some users scp but not ssh?
>> > This restrictions should be applied to certain users only.
>>
>> Try /bin/false in the /etc/passwd entry for those users.
>>
>> Regards,
>>
>> Fred
>> --
>> Fred Mobach - [EMAIL PROTECTED] - [EMAIL PROTECTED]
>> Systemhouse Mobach bv - The Netherlands - since 1976
>> /"\ --software patents will burn in hell--
>> \ / --and software patent holders also--
>> X ASCII RIBBON CAMPAIGN
>> / \ AGAINST HTML MAIL
>
>
>
>
>
>
--
Thank you,
Trevor Antczak
Network Administrator II
Tulane University Math Dept.
[EMAIL PROTECTED]
(504) 862-3457
