Andrew> i would like to set up a server running centos 6 so that some Andrew> specific users can transfer files in and do nothing else.
Andrew> if they were using sftp, there are numerous pages detailing Andrew> how to setup jails and configure sshd to only do Andrew> sftp-server. how do i do that for scp? by experiment, i can Andrew> probably set up a jail and just have the scp binary, but this Andrew> seems a fair bit of work for what i would have thought to be a Andrew> somewhat common case. We've setup and deployed the 'scponly' hack on our ftp servers to provide this feature, ontop of our proftpd setup. Yes, we're still supporting and offering ftp access as well as sftp/scp access. The gotchas is that proftpd does chown() calls, so you have to hardlink the needed libraries/binaries for the scp stuff to work inside each ftp user's tree structure. I've got it all scripted out and it works. John _______________________________________________ Tech mailing list Tech@lists.lopsa.org https://lists.lopsa.org/cgi-bin/mailman/listinfo/tech This list provided by the League of Professional System Administrators http://lopsa.org/
