Subject: Re: (reasonably) secure shared upload area on server
To: David Brownlee <email@example.com>
From: Michael-John Turner <firstname.lastname@example.org>
Date: 10/22/2006 11:22:50
On Wed, Oct 18, 2006 at 04:13:45PM +0100, David Brownlee wrote:
> - sftp to account with no login shell, and with port forwarding
> disabled. Again, relatively easy to setup, but no chroot
> (though encryption should be more than fine)
I've had good luck doing something like this with rssh as the login shell.
It allows one to setup a very restricted account that can only be used to
scp/sftp to, with optional chroot'ing, etc. See shells/rssh in pkgsrc.
Michael-John Turner | http://mjturner.net/
email@example.com | Open Source in WC ZA - http://www.clug.org.za/