Articles | Search | Questions | Comming up | Sitemap

Ustrem.org

some good stuff on PHP, MySQL and Linux

Restricting sftp users from opening ssh shells

 

If you want to enable given user to manage his files over sftp, but you don't want him to execute commands on your system there's an easy way to do this. You should just set user's login shell to stfp-server - this is the program which enables sftp over ssh. To find where exactly is it on your installation, use this command:

 

grep Subsystem /etc/ssh/sshd_config

 

You'll get /usr/libexec/sftp-server for example. Next add this to the list of allowed shells:

 

echo '/usr/libexec/sftp-server' >> /etc/shells

 

And finally modify user's shell:

 

usermod -s /usr/libexec/sftp-server sftpuser

 

That's it - now sftpuser account can only use sftp.

 

 

No comments yet

Back to articles list

This page was last modified on 2025-04-30 11:10:36

Menu ;)

Български| English

• Home
• Articles
  
• Search
  
• Questions
  
• Comming up
  
• WebMail

Hints and tips

apache bash cmd database java javascript linux mod_rewrite mssql mysql oracle os perl php regex rsync ssh svn unix web_design windows

All tips

Newsletter

Subscribe for the newsletter with the latest articles and manuals on this site. Provide the address, where you would like to receive the newsletter.

Links

Articles | Search | Дива пчела | WebMail | Top
© 2006-2020 Ustrem.org is powered by bobi_at_ustrem.org, onzi_at_ustrem.org and Slackware linux | Design by Andreas Viklund