Articles | Search | Questions | Comming up | Sitemap

Ustrem.org

some good stuff on PHP, MySQL and Linux

HOWTO: Restricting sftp users from opening ssh shells

If you want to enable given user to manage his files over sftp, but you don't want him to execute commands on your system there's an easy way to do this. You should just set user's login shell to stfp-server - this is the program which enables sftp over ssh. To find where exactly is it on your installation, use this command:

grep Subsystem /etc/ssh/sshd_config

You'll get /usr/libexec/sftp-server for example. Next add this to the list of allowed shells:

echo '/usr/libexec/sftp-server' >> /etc/shells

And finally modify user's shell:

usermod -s /usr/libexec/sftp-server sftpuser

That's it - now sftpuser account can only use sftp.

 

No comments yet

Post a comment (fixed now)

Back to articles list      |     

This page was last modified on 2010-09-10 05:32:52

Menu ;)

Български| English

• Home
• Articles
  
• Search
  
• Questions
  
• Comming up
  
• WebMail

Hints and tips

apache bash cmd database java javascript linux mod_rewrite mssql mysql oracle os perl php regex rsync ssh unix web_design windows

All tips

Newsletter

Subscribe for the newsletter with the latest articles and manuals on this site. Provide the address, where you would like to receive the newsletter.

Links

• 
• 
  
• 
• 

• 
• 
• 
• 

Articles | Search | Questions | Comming up | WebMail | Top
© 2006-2010 Ustrem.org is powered by bobi_at_ustrem.org, onzi_at_ustrem.org and Slackware linux | Design by Andreas Viklund