Re: Limiting scp access
You may also want to look at SCPONLY.
Description: Restricts the commands available to scp- and sftp-users
"scponly" is an alternative 'shell' (of sorts) for system
administrators who would like to provide access to remote users to
both read and write local files without providing any remote
execution priviledges. Functionally, it is best described as a
wrapper to the mostly trusted suite of ssh applications.
Origin: Ubuntu
Ivan.
On Mon, 2006-02-20 at 13:38 +0100, Nico De Ranter wrote:
> Hi,
>
> I'm trying to setup a secure replacement for an ftp server where a
> limited set of users should be able to connect using scp only while the
> other users should not be able to connect at all.
>
> I know scponly can be used to prevent a user from getting a full login
> using ssh, but how do I prevent regular users from logging in via ssh at
> all.
>
> The idea is to setup a server which is available from the Internet for 1
> specific user using scp only, but all other users can get full ssh
> access when they are connecting from my internal network only. I want to
> make sure that a user who has full ssh access from my internal network
> cannot get full ssh access when trying to connect from home.
>
> Any ideas?
>
> Nico
>
>
> --
> ---------------------------------------------------------
> "It has been said that there are only two businesses that
> refer to customers as users: illegal drug trade and
> the computer industry."
> ---------------------------------------------------------
> Nico De Ranter
> Senior System Administrator
> Sony Service Center (NSCE)
> The Corporate Village, Da Vincilaan 7-D1
> B-1935 Zaventem, Belgium
> Telephone: +32 (0)2 700 86 41 Fax: +32 (0)2 700 86 22
>
>
>
Reply to: