On Thu, 17 May 2001, Jesse Adelman wrote:
> Hello, good SSH users and developers. I need to set up SSH such that users
> can scp and sftp but NOT log in to a shell. I've attempted to set a shell as
> /bin/<doesnotexist>, but that breaks SSH generally, including scp and sftp.
> What is the best/preferred method for disabling shell access and allowing
> scp and sftp to work?
I'd make a pseudo-shell program that detects method of invocation and then
permits limited functionality in a chroot() prison. It's be nifty to have
a little custom interface appear for users, and you could log or track
certain stuff. And it'd be secure.
Zak Power ; executive consultant / ZENCOR Technologies International
TIP # ZAK / SAVE # 674520faefcda17618badce99031d44343d2ddec
[EMAIL PROTECTED]
http://www.hackers-for-hire.net/~zak
599-B Yonge Street #280, Toronto, Ontario, Canada, M4Y-1Z4
(416)-820-3304 extension 220 - LEAVE MESSAGE!
====================================
HIGH QUALITY HACKERS FOR HIRE!
http://www.hackers-for-hire.com
[EMAIL PROTECTED]
====================================
