Mailinglist Archive: opensuse-security (670 mails)
| < Previous | Next > |
Re: [suse-security] sftp without without a valid shell?
- From: Boris Lorenz <bolo@xxxxxxx>
- Date: Wed, 07 Nov 2001 19:15:47 +0100 (CET)
- Message-id: <XFMail.011107191547.bolo@xxxxxxx>
Hi,
On 06-Nov-01 Teodor Cimpoesu wrote:
> Hi Andreas!
> On Tue, 06 Nov 2001, Andreas Rittershofer wrote:
>
>> On 6 Nov 01, at 10:39, Thorsten Marquardt wrote:
>>
>> > I like to offer some customers a kind off sftp account but to deny any
>> > login to this accounts. So I thought about having /bin/false as shell in
>> > /etc/passwd but this prevents sftp to. What can I do?
> put /bin/false in /etc/shells and set /bin/false as shell [discl: not tested]
this works with ftp, but not with sftp, which is part of the ssh package.
I've gone thru all the options two years ago... /bin/false, /bin/noshell, my own
(perl-)shells, to no avail. Only ssh-dummy-shell does the trick.
If there's an alternative to it, I would be happy to learn.
> -- teodor
Boris Lorenz <bolo@xxxxxxx>
---
On 06-Nov-01 Teodor Cimpoesu wrote:
> Hi Andreas!
> On Tue, 06 Nov 2001, Andreas Rittershofer wrote:
>
>> On 6 Nov 01, at 10:39, Thorsten Marquardt wrote:
>>
>> > I like to offer some customers a kind off sftp account but to deny any
>> > login to this accounts. So I thought about having /bin/false as shell in
>> > /etc/passwd but this prevents sftp to. What can I do?
> put /bin/false in /etc/shells and set /bin/false as shell [discl: not tested]
this works with ftp, but not with sftp, which is part of the ssh package.
I've gone thru all the options two years ago... /bin/false, /bin/noshell, my own
(perl-)shells, to no avail. Only ssh-dummy-shell does the trick.
If there's an alternative to it, I would be happy to learn.
> -- teodor
Boris Lorenz <bolo@xxxxxxx>
---
| < Previous | Next > |