ssh-dummy-shell
Markus Friedl
markus at openbsd.org
Sat Nov 24 06:30:11 EST 2001
well, do we really need this?
i think you just could use sftp-server as a loginshell and have the
same effect.
are there any problems if we set the loginshell to sftp-server? for
interactive logins nothing happens, and it even works with sftp over
both protocol version 1 and 2.
are there any risks?
all ssh-dummy-shell is restrict the possible commands to sftp-server
and prints an error message if the shell is used without the sftp
client. so it's a little bit more user friendly.
On Fri, Nov 23, 2001 at 11:57:15AM -0700, Craig Davison wrote:
> Are there any plans to write an OpenSSH version of ssh.com's
> ssh-dummy-shell utility?
>
> Here's a copy of the man page for this utility:
> http://www.cs.duke.edu/cgi-bin/man.cgi?section=1&topic=ssh-dummy-shell
>
> Basically, it's a replacement for /sbin/nologin that can launch
> sftp-server.
>
> If there's already a way to give a user scp and/or sftp access but not
> shell access, please point me to a page explaining how.
>
> Thanks in advance
>
> --
> Craig Davison
> SecurityFocus
> (403) 213-3939 ext. 228
>
>
More information about the openssh-unix-dev
mailing list