Date: Fri, 25 Mar 2005 17:07:54 -0500 From: Jeff Wirth <jeff.wirth@gmail.com> To: Grant Peel <gpeel@thenetnow.com> Cc: freebsd-questions@freebsd.org Subject: Re: sFTP nologin Message-ID: <5d2cf6920503251407759fcff0@mail.gmail.com> In-Reply-To: <004b01c53155$5ce59c60$6401a8c0@GRANT> References: <002c01c53145$b9c64390$6401a8c0@GRANT> <4244354E.10401@haystacks.org> <004b01c53155$5ce59c60$6401a8c0@GRANT>
next in thread | previous in thread | raw e-mail | index | archive | help
> Yes, been trying that all morning. sbin/nologin kills the connection after > it prints the message. > > i have been tring scponly it has been less that workable so far too. > 'nologin' will work for 'ftp' and things that don't require a password ( i.e. `sudo -u user -s`) 'scponly' is the correct solution for limiting users to scp or sftp. I use it extensively in production for setting up secure, automated file transfers (w/ key auth). Once 'scponly' is installed, it should be a simple matter of adding 'scponly' to /etc/shells and configuring your user's shell accordingly. - jw
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5d2cf6920503251407759fcff0>