scp

Prib Pavel pavel.prib at i.cz
Tue Mar 26 15:10:32 CET 2002


Hm. A co nakonfigurovat sshd a nastavit prava na adresare uzivatelu ? 
To mi pripada jednodussi.
Jinak konfigurace ftp se defakto da udelat stejnymi prostredky -
/etc/nologin a pro jistotu do  adresare uzivatelu dat do 
user startup skriptu (pro sh, tcsh, ...) prikaz exit. 
Tak jsem to kdysi resil ja na AIXu.

   Pavel

man sshd

...

UseLogin
     Specifies whether login(1) is used for interactive login ses-
     sions.  Note that login(1) is never used for remote command exe-
     cution.  The default is ``no''.

...

LOGIN PROCESS
When a user successfully logs in, sshd does the following:

1.   If the login is on a tty, and no command has been specified,
     prints last login time and /etc/motd (unless prevented in the
     configuration file or by $HOME/.hushlogin; see the FILES sec-
     tion).

2.   If the login is on a tty, records login time.

3.   Checks /etc/nologin and /var/run/nologin; if one exists, it
     prints the contents and quits (unless root).

4.   Changes to run with normal user privileges.

5.   Sets up basic environment.

6.   Reads $HOME/.ssh/environment if it exists.

7.   Changes to user's home directory.

8.   If $HOME/.ssh/rc exists, runs it; else if /etc/ssh/sshrc
     exists, runs it; otherwise runs xauth(1).  The ``rc'' files
     are given the X11 authentication protocol and cookie (if
     applicable) in standard input.

9.   Runs user's shell or command.

> Ja jsem to chtel mit jako sifrovanou alternativu ftp s 
> ftpchroot a shellem
> nologin. Uzivatel se tak nemuze prihlasit a spoustet na serveru
zadne
> aplikace, navic se nemuze prochazet nikde jinde nez ve svem 
> houmu. Toto vse
> ten shell scponly sliboval, ale moje znalosti nestacili k 
> tomu, abych ho
> uvedl do provozu...
> Pepa.
> 
> 
> 
> 
> 
> 
> ----- Original Message -----
> From: "Prib Pavel" <pavel.prib at i.cz>
> To: <users-l at freebsd.cz>
> Sent: Tuesday, March 26, 2002 11:28 AM
> Subject: RE: scp
> 
> 
> >    Ahoj.
> >
> > Ja by jsem to resil tim, ze v inetd.conf zaslapnu vse a 
> uzivateli dam
> > WinSCP z http://winscp.vse.cz/cze/. A pak uzivatel ma moznost
> > komunikovat
> > pomoci SSH .
> >
> >     Pavel
> >
> > > Chtel bych pro uzivatele povolit jenom scp. Pro linux jsem nasel
> > shell
> > > scponly
> > > http://www.sublimation.org/scponly/
> > > ale pod FreeBSD se mi to nepodarilo rozchodit - nevite 
> nekdo o necem
> > > podobnem?
> > > Diky Pepa.
> > >
> >
> >
> 



More information about the Users-l mailing list