How to restrict ssh by forced commands but sftp login should be enabled? Post: 302762155

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

How to restrict user to sftp usage?

Hi everyone! I have a problem... I need to restrict user to sftp usage only from one computer to another... I mean that the user cannot login to the computer or even use sftp from other computer only from the one i allow. thanx for the help!

2. Solaris

restrict commands

Dears, how to determine the commands that could be used by certain user..like I want to prevent some users from running pwd command???? Thanx

3. Shell Programming and Scripting

Generate Public Key when the server is not ssh enabled

I am writing a script that needs to access various servers some of which are not ssh enabled. In order to access the ssh enabled servers I am using the following command to generate the public key : ssh-keygen -t rsa Is there a similar command for the other servers as well. If I try to use...

4. UNIX for Advanced & Expert Users

Generate Public key for non ssh enabled servers

5. Shell Programming and Scripting

how can i restrict commands

hi all, i want to restrict commands to run from a specifc directory..and to make that only some specific commands to run ,,not all. please help me ...how can i make this happen.

6. Shell Programming and Scripting

How ti check if passwordless ssh is enabled between two systems

I am writing a script which will execute commands on remote host only if they have a passwordless ssh setup. How do i check for that in my script

7. Shell Programming and Scripting

Automating file transfer between two SSH enabled server.

Hi Experts, Few more words to the title, both the servers are ssh enabled but I have read only access to the second server, so I cannot automate SFTP process using RSA/DSA keys. I am using Control M to trigger the script and do not want any manual intervention to enter the password to complete...

8. Red Hat

Chroot sftp users, remote sftp login shows wrong timestamp on files

Hello, I have a weird issue, I have RHEL 5.7 running with openssh5.2 where sftpgroup OS group is chroot. I see the difference difference in timestamp on files, when I login via ssh and SFTP, I see four hour difference, is something missing in my configuration. #pwd...

9. Red Hat

SFTP user include/exclude without preventing SSH login

I have been asked to see if we can restrict SFTP access to authorised users only. There will be business users who will log on with SSH, but they are locked into a menu. They will have write access to the production data to do their job, but we don't want them to have access to read/write the...

10. Shell Programming and Scripting

Commands not working with ssh remote login

Hi Friends, I am unable to run our application commands on remote server using ssh (passwordless login enabled). But the same command running with telent perl script. please suggest. SSH: C:/bin>ssh -l monitor tl04cp01 exec "/home/monitor/123" /home/monitor/123: viewlog: not found. ...

LEARN ABOUT REDHAT

scp

SCP(1)							    BSD General Commands Manual 						    SCP(1)

NAME

     scp -- secure copy (remote file copy program)

SYNOPSIS

     scp [-pqrvBC46] [-F ssh_config] [-S program] [-P port] [-c cipher] [-i identity_file] [-o ssh_option] [[user@]host1:]file1 [...]
	 [[user@]host2:]file2

DESCRIPTION

     scp copies files between hosts on a network.  It uses ssh(1) for data transfer, and uses the same authentication and provides the same secu-
     rity as ssh(1).  Unlike rcp(1), scp will ask for passwords or passphrases if they are needed for authentication.

     Any file name may contain a host and user specification to indicate that the file is to be copied to/from that host.  Copies between two
     remote hosts are permitted.

     The options are as follows:

     -c cipher
	     Selects the cipher to use for encrypting the data transfer.  This option is directly passed to ssh(1).

     -i identity_file
	     Selects the file from which the identity (private key) for RSA authentication is read.  This option is directly passed to ssh(1).

     -p      Preserves modification times, access times, and modes from the original file.

     -r      Recursively copy entire directories.

     -v      Verbose mode.  Causes scp and ssh(1) to print debugging messages about their progress.  This is helpful in debugging connection,
	     authentication, and configuration problems.

     -B      Selects batch mode (prevents asking for passwords or passphrases).

     -q      Disables the progress meter.

     -C      Compression enable.  Passes the -C flag to ssh(1) to enable compression.

     -F ssh_config
	     Specifies an alternative per-user configuration file for ssh.  This option is directly passed to ssh(1).

     -P port
	     Specifies the port to connect to on the remote host.  Note that this option is written with a capital 'P', because -p is already
	     reserved for preserving the times and modes of the file in rcp(1).

     -S program
	     Name of program to use for the encrypted connection.  The program must understand ssh(1) options.

     -o ssh_option
	     Can be used to pass options to ssh in the format used in ssh_config(5).  This is useful for specifying options for which there is no
	     separate scp command-line flag.  For example, forcing the use of protocol version 1 is specified using scp -oProtocol=1.

     -4      Forces scp to use IPv4 addresses only.

     -6      Forces scp to use IPv6 addresses only.

DIAGNOSTICS

     scp exits with 0 on success or >0 if an error occurred.

AUTHORS

     Timo Rinne <tri@iki.fi> and Tatu Ylonen <ylo@cs.hut.fi>

HISTORY

     scp is based on the rcp(1) program in BSD source code from the Regents of the University of California.

SEE ALSO

     rcp(1), sftp(1), ssh(1), ssh-add(1), ssh-agent(1), ssh-keygen(1), ssh_config(5), sshd(8)

BSD
								September 25, 1999							       BSD