Re: Allow password auth for one user with sftp?

To: debian-security@lists.debian.org
Cc: Adrian von Bidder <avbidder@fortytwo.ch>
Subject: Re: Allow password auth for one user with sftp?
From: Stefan Fritsch <sf@sfritsch.de>
Date: Sun, 14 Jan 2007 20:17:02 +0100
Message-id: <[🔎] 200701142017.02294.sf@sfritsch.de>
In-reply-to: <[🔎] 200701141436.16865.avbidder@fortytwo.ch>
References: <[🔎] 200701111855.38860.avbidder@fortytwo.ch> <[🔎] 20070111191506.GA23804@rei.matrix> <[🔎] 200701141436.16865.avbidder@fortytwo.ch>

On Sunday 14 January 2007 14:36, Adrian von Bidder wrote:
> I have users a, b, c, d, e.  All users except e can have shell
> access, but beecause shell access is powerful, must not be able to
> log in with password, but only with public key.  User e is allowed
> to log in with password and is restricted by rssh to only use scp,
> sftp or rsync so that even if that password is stolen/guessed, the
> attacker can at most deface the hosted web site in e's directory.
>
> Judging from the replies I've received so far I'll just end up
> running a 2nd sshd on port 2222 or wherever.

Openssh 4.4 supports per user configuration. But I don't think it will 
get into Debian before Etch's release.

Cheers,
Stefan

Reply to:

Follow-Ups:
- Re: Allow password auth for one user with sftp?
  - From: Roman Pertl <debian@pertl.org>

References:
- Allow password auth for one user with sftp?
  - From: Adrian von Bidder <avbidder@fortytwo.ch>
- Re: Allow password auth for one user with sftp?
  - From: Michel Messerschmidt <lists@michel-messerschmidt.de>
- Re: Allow password auth for one user with sftp?
  - From: Adrian von Bidder <avbidder@fortytwo.ch>

Prev by Date: Re: Allow password auth for one user with sftp?
Next by Date: Re: Allow password auth for one user with sftp?
Previous by thread: Re: Allow password auth for one user with sftp?
Next by thread: Re: Allow password auth for one user with sftp?
Index(es):
- Date
- Thread