From owner-freebsd-questions Mon May 13 15: 3:57 2002 Delivered-To: freebsd-questions@freebsd.org Received: from fepC.post.tele.dk (fepC.post.tele.dk [195.41.46.147]) by hub.freebsd.org (Postfix) with ESMTP id D381837B401 for ; Mon, 13 May 2002 15:03:52 -0700 (PDT) Received: from there ([80.63.125.30]) by fepC.post.tele.dk (InterMail vM.4.01.03.23 201-229-121-123-20010418) with SMTP id <20020513220133.BQTM22598.fepC.post.tele.dk@there>; Tue, 14 May 2002 00:01:33 +0200 Content-Type: text/plain; charset="iso-8859-1" From: Daniel Blankensteiner To: Nick Rogness Subject: Re: FTPd and SSHd Date: Tue, 14 May 2002 00:01:46 +0200 X-Mailer: KMail [version 1.3] References: In-Reply-To: Cc: freebsd-questions@FreeBSD.ORG MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Message-Id: <20020513220133.BQTM22598.fepC.post.tele.dk@there> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Tuesday 14 May 2002 00:02, you wrote: > On Mon, 13 May 2002, Daniel Blankensteiner wrote: > > But now comes the problem with sftp. I want to allow users to access > > sftp, but not ssh, how do I do this? I also want to /etc/ftpchroot the > > users, but sftp-server does not support this? > > Simple and easy solution, shut off their shell access. > Use /sbin/nologin or something for their shell (in the password > file). Ok, the user is allowed to ssh to my server, but his shell is /sbin/nologin then this happens: db# sftp tester@localhost Connecting to localhost... tester@localhost.www.hacker.dk's password: Received message too long 1416128883 br db To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message