tech question "sftp to ftponly accounts"
mouring at etoh.eviladmin.org
mouring at etoh.eviladmin.org
Tue Feb 27 19:49:46 EST 2001
On Tue, 27 Feb 2001, Damien Miller wrote:
> On Tue, 27 Feb 2001, Ivan Teliatnikov wrote:
>
> > Sorry guys,
> >
> > I am not meant to write to this list disturbing developers with a silly
> > end user question, but this a matter of huge importance for me.
> >
> > I am running ssh-server on RedHat 6.1. Before we introduced ssh we had a
> > couple of ftponly accounts for people downloading data from our
> > university database. It appears that they cannot access ftponly account
> > from any windows sftp clients. However it works fine for all normal
> > users. May be you can give a hint on this matter.
>
> sftp is a completely different protocol to regular FTP. OpenSSH does not
> have all the pieces in place to support chroot ftp only accounts yet
> (unless you want to do it youself using a custom shell).
>
If you don't care about chroot()ing the user into their home directory
then you can set their shell to ${PREFIX}/libexec/sftp-server. This will
cause them to run the sftp server no matter how they attempt to ssh into
the box.
Granted it causes 'scp' to hang, but it works.
- Ben
More information about the openssh-unix-dev
mailing list