09-29-2009
File access issue through sftp/winscp
Hi,
I have SSH where I want to restrict browsing for a user "drrep" to the assigned home directory only.So I have put a entry in the sshd_config file as “AllowFiles "drrep:/fcrarch/fl02r/*" as shown in the scrren below. But due to this setting none of the users are able to login through winscp or sftp.When removing the above entry all users along with "drrep" are able to roam in any directory.
SSh version is showing as below:
lslpp -l | grep ssh
openssh.base.client 5.0.0.5302 COMMITTED Open Secure Shell Commands
openssh.base.server 5.0.0.5302 COMMITTED Open Secure Shell Server
openssh.license 5.0.0.5302 COMMITTED Open Secure Shell License
openssh.man.en_US 5.0.0.5302 COMMITTED Open Secure Shell
openssh.msg.en_US 5.0.0.5302 COMMITTED Open Secure Shell Messages -
openssh.base.client 5.0.0.5302 COMMITTED Open Secure Shell Commands
openssh.base.server 5.0.0.5302 COMMITTED Open Secure Shell Server
Please suggest..It's urgent.
10 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi
I'm using this script to upload a file from local system to sftp server.
But in the log file i'm getting an error "Error during upload"
Can you please help me out ...
### CONFIGURATION
LOCAL_DIR=/abc/out
FILE_MASK="File*.txt"
LOG_DIR=/abc/error/File_`date "+%Y%m%d%H%M%S"`.LOG... (3 Replies)
Discussion started by: Jaychandra
3 Replies
2. UNIX for Dummies Questions & Answers
Hello,
I am using MySecureShell to chroot all sftp accesses. The problem that I have is that my boss does not want root to be able to use sftp. Root should still be able to ssh. Any ideas? (2 Replies)
Discussion started by: mojoman
2 Replies
3. Linux
Hi Friends,
I have installed a FTP Server on my Linux machine (Fedora 11).
I want the ftp users to be restricted to their own home dir using sftp.
But the said condition is met when the user logs in using ftp over port 21 and when the user logs in using sftp i.e. protocol 22, he/she has... (4 Replies)
Discussion started by: pashy
4 Replies
4. Shell Programming and Scripting
I have a C++ binary executable installed in a file system which is shared across multiple solaris boxes.
When I start this executable from one of the boxes,I am able to start only 4 parallel instances and from the 5th instance onwards I am getting the following error.
fatal: libdb2.so.1:... (2 Replies)
Discussion started by: prasperl
2 Replies
5. Solaris
Hello,
I have a couple of zip files to be copied from my local drive to a folder in solaris10 residing in a VM ware. i am using WINSCP, I tried to get hold of
the solaris hostname or ip using ifconfig -a , hostname|nslookup etc. when i create a new session in WINSCP using that IP and port... (6 Replies)
Discussion started by: herbich1985
6 Replies
6. Red Hat
Hi, I am facing a weird file access time issue on redHat5.x. I have a program which will scan the files in the NFS system and delete files which are older than 4 days, before deleting files program will print the access time of the file.
Some of the files are getting deleted which are not older... (1 Reply)
Discussion started by: Satyak
1 Replies
7. Shell Programming and Scripting
Hello All,
I am stuck!
I have access to an external server via SFTP. In order to access the external server I was given a specific port, password, and a ppk.
I would to create a script on my server end that can I can setup as a corn job, that will connect to the external server and... (1 Reply)
Discussion started by: kingr008
1 Replies
8. UNIX for Dummies Questions & Answers
Hi guys,
Need a quick and urgent help on below issue.
One of our application is try to transfer the file to another host thru sftp process
My file is about 1 GB.
Job is getting hung while transferring the file. So when I login as sftp and check the file system space is only in MB... (2 Replies)
Discussion started by: Vinoth Kumar G
2 Replies
9. Red Hat
I have created two users on our ftp server. They will use sftp to connect this server. But I do not want them to give direct ssh access. If I give /bin/false shell, sftp will not work. If I give /bin/nologin, it fails with below messages
# sftp trdeo@bd01.xxx.com
Connecting to bd01.xxx.com...... (6 Replies)
Discussion started by: solaris_1977
6 Replies
10. AIX
Did some search but didn't find what I was looking for. We have a fairly complex system in which we have a special shell that is actually a script that runs some checks to make sure the user is coming in via the approved ssh client and if not they are kicked out.
Recently we figured out folks are... (3 Replies)
Discussion started by: juredd1
3 Replies
LEARN ABOUT OPENSOLARIS
sftp-server
sftp-server(1M) System Administration Commands sftp-server(1M)
NAME
sftp-server - SFTP server subsystem
SYNOPSIS
/usr/lib/ssh/sftp-server [-f log_facility] [-l log_level]
DESCRIPTION
sftp-server implements the server side of the SSH File Transfer Protocol as defined in the IETF draft-ietf-secsh-filexfer.
sftp-server is a subsystem for sshd(1M) and must not be run directly. Command-line flags to sftp-server should be specified in the Subsys-
tem declaration. See sshd_config(4) for more information.
To enable the sftp-server subsystem for sshd add the following to /etc/ssh/sshd_config:
Subsystem sftp /usr/lib/ssh/sftp-server
See sshd_config(4) for a description of the format and contents of that file.
There is no relationship between the protocol used by sftp-server and the FTP protocol (RFC 959) provided by in.ftpd.
OPTIONS
Valid options are listed below. As stated above, these are to be specified in the Subsystem declation of sshd_config.
-f log_facility
Specifies the facility code that is used when logging messages from sftp-server. The possible values are: DAEMON, USER, AUTH, LOCAL0,
LOCAL1, LOCAL2, LOCAL3, LOCAL4, LOCAL5, LOCAL6, LOCAL7. The default is AUTH.
-l log_level
Specifies which messages will be logged by sftp-server. The possible values are: QUIET, FATAL, ERROR, INFO, VERBOSE, DEBUG, DEBUG1,
DEBUG2, and DEBUG3. INFO and VERBOSE log transactions that sftp-server performs on behalf of the client. DEBUG and DEBUG1 are equiva-
lent. DEBUG2 and DEBUG3 each specify higher levels of debugging output. The default is ERROR.
EXIT STATUS
The following exit values are returned:
0 Successful completion.
>0 An error occurred.
FILES
/usr/lib/ssh/sftp-server Server-side binary.
ATTRIBUTES
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWsshdu |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
SEE ALSO
sftp(1), ssh(1), ssh-add(1), ssh-keygen(1), sshd(1M), sshd_config(4), attributes(5)
SunOS 5.11 24 Oct 2007 sftp-server(1M)