On Sun, Feb 16, 2003 at 06:22:28PM +0100, Burkhard Ritter wrote: > On Sat, 15 Feb 2003, Michael Heironimus wrote:
Hi, > > I think it's partly a chicken-and-egg problem. Why use it when almost no > > software supports it and almost no sites use it? Why enable it on your > > site when almost nobody uses it and almost no clients support it? Why > > add it to your client when nobody uses it and most people don't even > > understand why they might want to? I suspect that most people/sites who > > are concerned about security use ssh/scp/sftp instead. > [...] > > A simple (perhabs stupid) question concerning this topic: Is there a way > to disable logins over ssh while permitting sftp-access? Are you talking about the sftp ssh subsystem or ftp with ssl? > I would like to have a secure ftp-access, but no login for some people > (having only a little space on the server for their website). Well if you think about sftp/scp aka ssh subsystem then I suggest to use a special shell like scponly [1] If you think about using ftp with ssl I would use proftpd [2] + mod_tls In this case it should suffice to give the user /bin/true as the shell and add /bin/true to /etc/shells HTH Sven [1] http://www.sublimation.org/scponly/ [2] http://www.proftpd.org -- Revolution is not a dinner party, not an essay, nor a painting, nor a piece of embroidery; it cannot be advanced softly, gradually, carefully, considerately, respectfully, politely, plainly, and modestly. - Mao Zedong (Mao Tse-tung) -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
