This is the mail archive of the cygwin@cygwin.com mailing list for the Cygwin project.


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]
Other format: [Raw text]

Re: OpenSSH and cygwin: let a user only connect via sftp.


/ "Max Bowsher" <maxb@ukf.net> wrote:
| Schonder, Matthias <Matthias.Schonder@Geis-Group.de> wrote:
>
>> How do I have to set passwd (if it is done there) that he only can
>> connect to the server via sftp and not via ssh.
>> What do I have to do?
>
| Setting a user's shell to /bin/false might (and I repeat, *might* - this is
| speculation) work.

Nope not for sftp, the problem is that sftp uses the users shell to
navigate and fetch files. (it logs in using ssh)

So what you have to do is to give the user a shell that has enough
rights to do what scp needs, check files, read them and so on, but not
allowed to fire up applications and so on. Think I have seen it
mentioned, maybe in the neighbourhood of sftp development.. 

           /Andy

-- 
 The eye of the beholder rests on the beauty!



--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/


Index Nav: [Date Index] [Subject Index] [Author Index] [Thread Index]
Message Nav: [Date Prev] [Date Next] [Thread Prev] [Thread Next]