18 Jul
2000
18 Jul
'00
15:42
Hi,
due to our security policy we can not provide our users with telnet/ftp but
with ssh/sftp to do their stuff on our servers. Now the question arose wether
it would be possible to only allow sftp-connections _without_ shell access. I
tried to set the users' shells to /bin/noshell, where noshell is a tiny script
echoing that shell access to the account is not allowed, but this does not
work, possibly due to the fact that sftp connections are tunneled over ssh and
therefore need some kind of shell to work properly...
Thanks for any information.
Boris Lorenz