If you have a spare IP address (outside your firewall), just setup a server with it with default openbsd configurations. Make sure it's only function is for sftp. I would recommend you do the same thing on an ftpd server as well. Make sure you have a policy that all your users are aware of that it's not secure. If you ever get rooted, it's outside your firewall.
On Mon, 18 Sep 2006 15:23:37 +0200, Bambero wrote > Hello > > Is there any good way to setup chrooted sftp-server without shell > access ? > > I tried scponly but it's not secure enough (I heard), there is no > port for openbsd, and I had problems to set it up. > > Second way is rssh, but compilation fails becouse of worexp. > > Now I'm using ftpd but I want to change it becouse of text/plain passwords. > > Any suggestions ? > > Bambero
