On Tue, Sep 05, 2006 at 09:46:26AM -0700, Patrick Morris wrote, and it was proclaimed: > > Does anybody know if it's possible, using openssh, to allow > > file transfer to/from a machine, using sftp, for a specific > > userid, and disallow ssh login/remote command execution for > > that same userid? Other userids on the machine should be unaffected. > > You should be able to set the user to an invalid shell (as long as it's > listed in /etc/shells). > >
Due to how SSH handles logins for sftp and scp services, this approach tends not to work (however it is viable for IMAP/FTP-only accounts). -- Coleman Kane
