Re: scp and sftp

To: Jon McCain <jmccain@davlong.com>
Cc: debian-security@lists.debian.org
Subject: Re: scp and sftp
From: Junichi Uekawa <dancer@netfort.gr.jp>
Date: Sun, 31 Mar 2002 12:34:02 +0900
Message-id: <[🔎] 20020331123402.4f3a5fa2.dancer@netfort.gr.jp>
In-reply-to: <[🔎] 3CA6816C.A52691B1@davlong.com>
References: <[🔎] 3CA6816C.A52691B1@davlong.com>

Jon McCain <jmccain@davlong.com> cum veritate scripsit:

> I've been playing around with the scp and sftp components of putty and
> noticed what I consider a security hole.  Winscp does the same thing. 
> The user can change to directories above their home.  Is there a way to
> chroot them like you can in an ftp config file?  I don't see anything in
> the sshd config files.  If you can't, how can I disable the scp
> functionality?  I'm not talking about scp from the linux box.  The users
> don't have shell access so that's not a problem.  I'm referring to
> remote people using a scp client to access my linux machine.  You can
> disable sftp ability by removing the sftp-server program but the scp
> server part seems to be part of sshd.

I'd be interested to know how you give scp access without 
giving shell access.




regards,
	junichi

-- 
dancer@debian.org : Junichi Uekawa   http://www.netfort.gr.jp/~dancer
GPG Fingerprint : 17D6 120E 4455 1832 9423  7447 3059 BF92 CD37 56F4


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: scp and sftp
  - From: Alvin Oga <aoga@Maggie.Linux-Consulting.com>

References:
- scp and sftp
  - From: Jon McCain <jmccain@davlong.com>

Prev by Date: scp and sftp
Next by Date: Re: scp and sftp
Previous by thread: scp and sftp
Next by thread: Re: scp and sftp
Index(es):
- Date
- Thread