LISTSERV 16.0 - LINUX-L Archives

Subscriber's Corner

Email Lists

LINUX-L Archives

LINUX-L@LISTS.UFL.EDU

View:

Message:

[

First

Last

]

By Topic:

[

First

Last

]

By Author:

[

First

Last

]

Font:

Proportional Font

		LISTSERV Archives
		LINUX-L Home
		LINUX-L 2007

Subject:

Re: scp and sftp... rssh, scponly, or "other"

From:

Shawn McMahon <[log in to unmask]>

Reply-To:

Platform Independent Linux List! <[log in to unmask]>

Date:

Mon, 18 Jun 2007 14:14:13 -0400

Content-Type:

text/plain

Parts/Attachments:

text/plain (20 lines)

On Mon, 2007-06-11 at 15:06 -0400, Dan Stoner wrote:
> I want to allow users to upload files using sftp and scp in a web 
> hosting environment.
> 
> I don't want to give full shell access.

You replace their shell with a script that checks to make sure the
command they're running is either scp or sftp, and exits otherwise.

The guts of ours:

[[ $# -gt 0 ]] && shift
set -- $1
case "$1" in
  scp) exec ${OPENSSH}/$* ;;
  ${OPENSSH}/sftp-server) exec $* ;;
esac

Others are addressing whether or not ssh is the right tool; assuming it
is, that's what we do.

Top of Message | Previous Page | Permalink

Search Archives

Advanced Options

Options

		Log In
		Get Password

		Search Archives

		Subscribe or Unsubscribe